New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Pasting PSK Missing newline OVPN P2P #6103
Comments
gsanchietti
added a commit
to NethServer/nethserver-vpn-ui
that referenced
this issue
Apr 1, 2020
OpenVPN is a little bit picky about configuration file syntax. If a psk, or a certificate, doesn't contain a new line, the generated configuration file is invalid. This commit backports a fix already in place inside NethGUI. See NethGUI code: https://github.com/NethServer/nethserver-openvpn/blob/master/root/usr/share/nethesis/NethServer/Module/OpenVpnTunnels/Servers/Modify.php#L197 NethServer/dev#6103
Test case 1
Test case 2
Test case 3
Test case 4
|
Test Case 1 : OK
Test Case 2 : OK
Test Case 3: OK
Test Case 4: OK |
gsanchietti
added
verified
All test cases were verified successfully
and removed
testing
Packages are available from testing repositories
labels
Apr 3, 2020
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Creating a new OVPN Server Tunnel (P2P) via Cockpit, pasting the PSK generated elsewhere, the configuration get applied but the tunnel won't start if you don't add a newline at the end of the key.
Nethserver: Static Public ip
Other Side rt: Dinamyc Public ip
Other Side rt
generate the PSK, for easy connection NS will be the Server Side, since it has a Static Public IPSteps to reproduce
Expected behavior
OVPN Server Tunnel start
Actual behavior
The VPN get created on the GUI, but logs reports:
ERROR: Endtag </secret> missing
Checking the cfg file
[root@fw ~]# cat /etc/openvpn/s2svpn.conf
:The
</secret>
ending tag it's on the same line of the psk, adding few newlineallow the tunnel to get up without issue.
Components
nethserver-vpn-ui-1.2.10-1.ns7.noarch
The text was updated successfully, but these errors were encountered: