Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I'm trying to create an OpenVPN connection to an old IPFire but the generated client config doesn't work with the server.
#OpenVPN Client conf
tls-client
client
nobind
dev tun
proto udp
tun-mtu 1400
remote a.b.c.d 1194
pkcs12 test.p12
cipher AES-256-CBC
auth SHA512
verb 3
ns-cert-type server
verify-x509-name a.b.c.d name
a.b.c.d is the public IP of the IPfire. It should give an address on a dedicated OpenVPN subnet when connected but complains it needs a gateway parameter and ifconfig.
Adding
route-gateway <address of dedicated subnet here>
gets me a bit further. Adding an ifconfig with both addresses on the dedicated subnet gives:
The local and remote VPN endpoints must exist within the same 255.255.255.252 subnet.
The dedicated subnet is .242 What should I put in the route-gateway? TFM isn't giving me much of a clue.
It turned out the OpenVPN subnet wasn't large enough. I tried it when no one else was connected and it connected fine with the original config. Not sure what was using all the addresses, though as it only had a couple users.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.