Upgraded to Fedora 15 now OpenVPN doesn't work ... systemctl issue?
 

Hi, after upgrading to Fedora 15 OpenVPN client doesn't work. Server is setup somewhere else.

I type in konsole as usual: # service openvpn start

and then I get following:

Starting openvpn (via systemctl): [ OK ]

In the past I got prompted for my password. It also never said something about systemctl. I was reading there is/was a systemd bug, but I didn't understand that really and I wouldn't think that there is a bug with such a widely used program ...

What does 'service openvpn status' say ? .. is it running ?

hi, yes, it says it give s me the [ok]. ...

oh, it daunts me right now, you actually wanted me to run the command "'service openvpn status'". Ok, I did that now, it says "openvpn: service not started"

Can you post an error log IF there is one? Sorry, I am not familiar with this package, but I found an article that might help.

Here: http://www.fedoraforum.org/forum/sho...d.php?t=262483

Hope that helps

The openvpn.log is empty, which is unusual.

The /var/log/messages shows:

a couple of days back:
May 25 07:28:40 pmatt2011 setroubleshoot: SELinux is preventing /usr/sbin/openvpn from write access on the file /etc/openvpn/openvpn.log. For complete SELinux messages. run sealert -l db9e5692-c424-4844-a75b-0dbd9e09d710

when I try to run this it says:
sealert -l db9e5692-c424-4844-a75b-0dbd9e09d710
Error
query_alerts error (1003): id (db9e5692-c424-4844-a75b-0dbd9e09d710) not found


today:
May 28 15:24:11 pmatt2011 systemd[1]: openvpn.service start request repeated too quickly, refusing to start.
May 28 15:24:30 pmatt2011 systemd[1]: openvpn.service start request repeated too quickly, refusing to start.

Try 'restorecon /etc/openvpn/openvpn.log*' .. there may be other incorrectly labelled files so check /var/log/messages after you try to restart openvpn

cheers

actually this morning it showed the openvpn.log from yesterday. The log underlines my problem, I don't get a password prompt anymore. BTW, I reinstalled OpenVPN with no effect.

Sun May 29 06:29:36 2011 OpenVPN 2.1.4 x86_64-redhat-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on Mar 17 2011
Sun May 29 06:29:36 2011 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Enter Private Key Password:Sun May 29 06:29:36 2011 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Sun May 29 06:29:36 2011 Cannot load private key file /etc/openvpn/keys/petFedora2.key: error:0906A068:PEM routines:PEM_do_header:bad password read: error:140B0009:SSL routines:SSL_CTX_use_PrivateKey_file:PEM lib
Sun May 29 06:29:36 2011 Error: private key password verification failed
Sun May 29 06:29:36 2011 Exiting

I am trying to load Fedora 14 again to see if it will go back to normal.

even when i try to load F14 in startup menu it does the same thing: Starting openvpn (via systemctl)

Before upgrading to F15 it didn't do that via systemctl thing.

Now here is another strange thing. I can make it work under KDE Network manager, however under service openvpn status it still shows unconnected. The other thing that sucks is that I will loose ping to www.google.com when I use OpenVPN over KDE Network Manager.