HOWTO: Openvpn and Ubuntu (Dapper)

[Sir_Stigmund]

Thanks so much for the how to, not sure I even qualify as a Noobie, but I do have a problem and I suspect it is related to the fact that I am an idiot but I can get so far theough the how to but in the section around CREATE KEYS FOR THE SERVER AND THE CLIENTS... when I type in gzip -d pkitool.gz I get the error "gzip: pkitool.gz: No such file or directory" and of course after that the subsequent permission denied when I try to build-ca. Help, thoughts appreciated

[GroundZero3]

are you in the correct directory when you try to do gzip command for pkitool?

Do you see the pkitool file when you do the list command on the directory?

Are you sudo in when trying it?

[Sir_Stigmund]

wow, thanks for the quick response yes i am in the right directory "/usr/share/doc/openvpn/examples/easy-rsa/2.0", yes i see the pkitool file and no I am not sudo as I am logged in as root.

[GroundZero3]

can you copy and paste when you do the ls command and when you try the gzip command with the error. Just so i can see what you are doing.

I just tried out the gzip -d pkitool.gz on my vmware image and worked fine.

[Sir_Stigmund]

here is the ls..
build-ca build-key-pass build-req-pass list-crl revoke-full
build-dh build-key-pkcs12 clean-all openssl.cnf sign-req
build-inter build-key-server inherit-inter pkitool vars
build-key build-req keys README.gz

here is what gets returned..


root@ubuntu:/usr/share/doc/openvpn/examples/easy-rsa/2.0# gzip -d pkitool.gz
gzip: pkitool.gz: No such file or directory

and also here is what I get when id o the clean-all and build-ca..

root@ubuntu:/usr/share/doc/openvpn/examples/easy-rsa/2.0# source ./vars
NOTE: If you run ./clean-all, I will be doing a rm -rf on /usr/share/doc/openvpn/examples/easy-rsa/2.0/keys
root@ubuntu:/usr/share/doc/openvpn/examples/easy-rsa/2.0# ./clean-all
root@ubuntu:/usr/share/doc/openvpn/examples/easy-rsa/2.0# ./build-ca
./build-ca: line 8: /usr/share/doc/openvpn/examples/easy-rsa/2.0/pkitool: Permission denied
root@ubuntu:/usr/share/doc/openvpn/examples/easy-rsa/2.0#

any help gratefully appreciated!

[GroundZero3]

You don't have the pkitool.gz file. You already have the pkitool folder so you can skip that

what shows up when you do ls -l build-ca

[Sir_Stigmund]

root@ubuntu:/usr/share/doc/openvpn/examples/easy-rsa/2.0# ls -l build-ca
-rwxr-xr-x 1 root root 121 2005-11-02 13:42 build-ca

THX

[GroundZero3]

try chmod +x pkitool and see if that corrects it

[zachhale]

I have several questions. You mention "Now when you were configuring the client.conf file you had a line in there “Dev-node mytap”." but never did this in the conf files. Is there something missing? When I finish doing all of this and try to run /etc/init.d/openvpn start I get a Starting virtual private network daemon: server(FAILED). Am I supposed to start the "server" vpn? I think this might be related to the previous problem with not setting the vpn name?

Also, you refer to client.conf (in the problem I just stated). May I assume you are talking about the clients.ovpn you made?

Thanks for your help!
Zach
aim:zachhale
gtalk:zachhale()gmail.com

[GroundZero3]

That client config has nothing to do with starting the server. If you are getting a server (failed) it means something in your config file on the server is not set up right.

As for the client.conf and my tap, i have updated that part of the post. You are correct i left out the mytap portion. Thanks for the heads up.

Please post your server.conf file so i/others can review it.