#1 06-01-2017 11:14:03

ste1982
Greenhorn
Registrato: 06-01-2017
Messaggi: 1

Problema connessione VPN

Ciao a tutti,
avrei un problema con la connessione ad un servizio VPN (purevpn).
Ho seguito la guida indicata sul sito per configurare la connessione, ma non riesco a connettermi utilizzando openvpn da cli, questo è il log:
Errore openpvn:;

Fri Jan  6 11:11:09 2017 OpenVPN 2.3.14 x86_64-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [MH] [IPv6] built on Dec  7 2016
Fri Jan  6 11:11:09 2017 library versions: OpenSSL 1.0.2j-fips  26 Sep 2016, LZO 2.08
Fri Jan  6 11:11:09 2017 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Fri Jan  6 11:11:09 2017 Control Channel Authentication: using 'Wdc.key' as a OpenVPN static key file
Fri Jan  6 11:11:10 2017 Attempting to establish TCP connection with [AF_INET]172.111.144.2:80 [nonblock]
Fri Jan  6 11:11:11 2017 TCP connection established with [AF_INET]172.111.144.2:80
Fri Jan  6 11:11:11 2017 TCPv4_CLIENT link local: [undef]
Fri Jan  6 11:11:11 2017 TCPv4_CLIENT link remote: [AF_INET]172.111.144.2:80
Fri Jan  6 11:11:11 2017 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Fri Jan  6 11:11:11 2017 VERIFY ERROR: depth=0, error=certificate signature failure: C=HK, ST=HK, L=HongKong, O=PureVPN, OU=IT, CN=PureVPN, name=PureVPN, emailAddress=mail@host.domain
Fri Jan  6 11:11:11 2017 OpenSSL: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed
Fri Jan  6 11:11:11 2017 TLS_ERROR: BIO read tls_read_plaintext error
Fri Jan  6 11:11:11 2017 TLS Error: TLS object -> incomingFri Jan  6 11:08:56 2017 OpenVPN 2.3.14 x86_64-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [MH] [IPv6] built on Dec  7 2016
Fri Jan  6 11:08:56 2017 library versions: OpenSSL 1.0.2j-fips  26 Sep 2016, LZO 2.08
Fri Jan  6 11:08:56 2017 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Fri Jan  6 11:08:56 2017 Control Channel Authentication: using 'Wdc.key' as a OpenVPN static key file
Fri Jan  6 11:08:56 2017 Attempting to establish TCP connection with [AF_INET]172.111.144.2:80 [nonblock]
Fri Jan  6 11:08:57 2017 TCP connection established with [AF_INET]172.111.144.2:80
Fri Jan  6 11:08:57 2017 TCPv4_CLIENT link local: [undef]
Fri Jan  6 11:08:57 2017 TCPv4_CLIENT link remote: [AF_INET]172.111.144.2:80
Fri Jan  6 11:08:57 2017 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Fri Jan  6 11:08:58 2017 VERIFY ERROR: depth=0, error=certificate signature failure: C=HK, ST=HK, L=HongKong, O=PureVPN, OU=IT, CN=PureVPN, name=PureVPN, emailAddress=mail@host.domain
Fri Jan  6 11:08:58 2017 OpenSSL: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed
Fri Jan  6 11:08:58 2017 TLS_ERROR: BIO read tls_read_plaintext error
Fri Jan  6 11:08:58 2017 TLS Error: TLS object -> incoming plaintext read error
Fri Jan  6 11:08:58 2017 TLS Error: TLS handshake failed
Fri Jan  6 11:08:58 2017 Fatal TLS error (check_tls_errors_co), restarting
Fri Jan  6 11:08:58 2017 SIGUSR1[soft,tls-error] received, process restarting
Fri Jan  6 11:09:01 2017 SIGINT[hard,init_instance] received, process exiting plaintext read error
Fri Jan  6 11:11:11 2017 TLS Error: TLS handshake failed
Fri Jan  6 11:11:11 2017 Fatal TLS error (check_tls_errors_co), restarting
Fri Jan  6 11:11:11 2017 SIGUSR1[soft,tls-error] received, process restarting
Fri Jan  6 11:11:14 2017 SIGINT[hard,init_instance] received, process exiting

Il problema viene riscontrato solamente con Fedora, mentre i pc con Mint, Debian e telefono Andoid si connettono senza problemi.

Grazie in anticipo!  smile
Ste

Non in linea

#2 08-01-2017 17:15:51

frafra
Fedora Ambassador
Da Vignate
Registrato: 14-05-2014
Messaggi: 1'452
Sito web

Re: Problema connessione VPN

A naso guarderei la prima linea contenente ERROR, ovvero:

Fri Jan  6 11:11:11 2017 VERIFY ERROR: depth=0, error=certificate signature failure: C=HK, ST=HK, L=HongKong, O=PureVPN, OU=IT, CN=PureVPN, name=PureVPN, emailAddress=mail@host.domain

Il certificato non è valido, quindi bisognerebbe importarlo/accettarlo. Non ho però mai utilizzato OpenVPN quindi non saprei da dove partire, se non dalla documentazione ufficiale. Prova a darci una occhiata smile

Non in linea

Piè di pagina