Layer2 Tunnel Konfigurieren

Einrichten des lokalen Netzes, Verbindung zu anderen Computern und Diensten.
Antworten
dufty2
Beiträge: 1709
Registriert: 22.12.2013 16:41:16

Re: Layer2 Tunnel Konfigurieren

Beitrag von dufty2 » 22.09.2018 12:59:03

Code: Alles auswählen

Sep 21 16:34:12 OpenVPNServer ovpn-server[484]: Options error: Unrecognized option or missing or extra parameter(s) in /etc/openvpn/server.conf:23: mode (2.4.0)
Sep 21 16:34:12 OpenVPNServer ovpn-server[484]: Use --help for more information.
sind es wohl, worauf sich bluestar bezieht.
Aber das hast Du sicher schon rausgefunden ;)

Benutzeravatar
bluestar
Beiträge: 2334
Registriert: 26.10.2004 11:16:34
Wohnort: Rhein-Main-Gebiet

Re: Layer2 Tunnel Konfigurieren

Beitrag von bluestar » 23.09.2018 12:15:24

Nur blöd, das die Konfiguration aus dem Post keine Zeile 23 enthält:
joe2017 hat geschrieben: ↑ zum Beitrag ↑
21.09.2018 11:37:04

Code: Alles auswählen

port 1194   #ich glaube das wird nicht mehr benötigt oder?
proto udp   #ich glaube das wird nicht mehr benötigt oder?
dev tap0
ca /path to chain ca
cert /path to cert
key /path to cert-key
dh ...
user nobody
group nogroup
persist-tun
persist-key
client-to-client
tls-auth ta.key
cipher AES-265-GCM

Benutzeravatar
joe2017
Beiträge: 1125
Registriert: 07.08.2017 14:29:51

Re: Layer2 Tunnel Konfigurieren

Beitrag von joe2017 » 24.09.2018 09:23:42

Ich hatte wohl zwischendurch einen weiteren Test gemacht. Ich habe jetzt einmal die Datei vom Server kopiert um Fehler zu vermeiden. Anbei die Config und das neue Log. Ich seh den Fehler leider nicht. Aber ich bin leider neu auf dem Gebiet und hoffe Ihr könnt mir weiter helfen.

/etc/network/interfaces

Code: Alles auswählen

auto lo
iface lo inet loopback

auto enp1s0
iface enp1s0 inet manual

auto br0
iface br0 inet manual
  pre-up openvpn --mktun --dev tap0 --dev-type tap
  bridge_ports enp1s0 tap0

/etc/openvon/server.conf

Code: Alles auswählen

#mode server tls-server dev tap0  ### das war übrigens die Zeile 23 ###
local 10.8.0.1
port 1194
proto udp
dev tap0
dev-type tap
ca /etc/openvpn/ssl/ca.crt.pem
cert /etc/openvpn/ssl/OpenVPNServer.crt.pem
key /etc/openvpn/ssl/OpenVPNServer_re.key.pem
dh none
keepalive 10 120
tls-auth /etc/openvpn/ssl/ta.key 0
cipher AES-256-GCM
user openvpn
group openvpn
persist-key
persist-tun
status openvpn-status.log
verb 3
explicit-exit-notify 1
daemon.log

Code: Alles auswählen

Sep 24 09:07:03 OpenVPNServer systemd[1]: Starting Flush Journal to Persistent Storage...
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started Flush Journal to Persistent Storage.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started Set the console keyboard layout.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started udev Coldplug all Devices.
Sep 24 09:07:03 OpenVPNServer lvm[260]:   2 logical volume(s) in volume group "OpenVPNServer-vg" monitored
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started Create Static Device Nodes in /dev.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started Monitoring of LVM2 mirrors, snapshots etc. using dmeventd or progress polling.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Reached target Local File Systems (Pre).
Sep 24 09:07:03 OpenVPNServer systemd[1]: Starting udev Kernel Device Manager...
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started udev Kernel Device Manager.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Found device RTL8111/8168/8411 PCI Express Gigabit Ethernet Controller.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Found device Micron_1100_SATA_256GB EFI\x20System\x20Partition.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Found device /dev/mapper/OpneVPNServer--vg-swap_1.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Activating swap /dev/mapper/OpneVPNServer--vg-swap_1...
Sep 24 09:07:03 OpenVPNServer systemd[1]: Found device Micron_1100_SATA_256GB 2.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Starting File System Check on /dev/disk/by-uuid/c9fe47b0-c131-46c8-a89b-70cbeb727210...
Sep 24 09:07:03 OpenVPNServer systemd[1]: Activated swap /dev/mapper/OpneVPNServer--vg-swap_1.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Reached target Swap.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started File System Check Daemon to report status.
Sep 24 09:07:03 OpenVPNServer systemd-fsck[397]: /dev/sda2: sauber, 331/62496 Dateien, 72315/249856 Blöcke
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started File System Check on /dev/disk/by-uuid/c9fe47b0-c131-46c8-a89b-70cbeb727210.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Mounting /boot...
Sep 24 09:07:03 OpenVPNServer systemd[1]: Mounted /boot.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Mounting /boot/efi...
Sep 24 09:07:03 OpenVPNServer systemd[1]: Mounted /boot/efi.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Reached target Local File Systems.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Starting Set console font and keymap...
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started ifup for enp2s0.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Starting Raise network interfaces...
Sep 24 09:07:03 OpenVPNServer systemd[1]: Starting Create Volatile Files and Directories...
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started Set console font and keymap.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started Create Volatile Files and Directories.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Starting Network Time Synchronization...
Sep 24 09:07:03 OpenVPNServer systemd[1]: Starting Update UTMP about System Boot/Shutdown...
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started Update UTMP about System Boot/Shutdown.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Reached target Sound Card.
Sep 24 09:07:03 OpenVPNServer sh[445]: enp2s0=enp2s0
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started Network Time Synchronization.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Reached target System Time Synchronized.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Reached target System Initialization.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started Daily Cleanup of Temporary Directories.
Sep 24 09:07:03 OpenVPNServer systemd[1]: apt-daily.timer: Adding 1h 6min 58.811447s random time.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started Daily apt download activities.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Listening on PC/SC Smart Card Daemon Activation Socket.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Listening on D-Bus System Message Bus Socket.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Reached target Sockets.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Reached target Basic System.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Starting System Logging Service...
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started D-Bus System Message Bus.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started Regular background program processing daemon.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Starting Login Service...
Sep 24 09:07:03 OpenVPNServer systemd[1]: apt-daily-upgrade.timer: Adding 34min 30.763042s random time.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started Daily apt upgrade and clean activities.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Reached target Timers.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Starting OpenVPN connection to server...
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started irqbalance daemon.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started System Logging Service.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started Login Service.
Sep 24 09:07:03 OpenVPNServer ovpn-server[537]: disabling NCP mode (--ncp-disable) because not in P2MP client or server mode
Sep 24 09:07:03 OpenVPNServer ovpn-server[537]: Options error: Parameter ca_file can only be specified in TLS-mode, i.e. where --tls-server or --tls-client is also specified.
Sep 24 09:07:03 OpenVPNServer ovpn-server[537]: Use --help for more information.
Sep 24 09:07:03 OpenVPNServer ifup[470]: Mon Sep 24 09:07:03 2018 TUN/TAP device tap0 opened
Sep 24 09:07:03 OpenVPNServer ifup[470]: Mon Sep 24 09:07:03 2018 Persist state set to: ON
Sep 24 09:07:03 OpenVPNServer systemd-udevd[546]: Could not generate persistent MAC address for tap0: No such file or directory
Sep 24 09:07:03 OpenVPNServer systemd-udevd[545]: Could not generate persistent MAC address for br0: No such file or directory
Sep 24 09:07:03 OpenVPNServer ifup[470]: Waiting for br0 to get ready (MAXWAIT is 32 seconds).
Sep 24 09:07:03 OpenVPNServer systemd[1]: openvpn@server.service: Control process exited, code=exited status=1
Sep 24 09:07:03 OpenVPNServer systemd[1]: Failed to start OpenVPN connection to server.
Sep 24 09:07:03 OpenVPNServer systemd[1]: openvpn@server.service: Unit entered failed state.
Sep 24 09:07:03 OpenVPNServer systemd[1]: openvpn@server.service: Failed with result 'exit-code'.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started Raise network interfaces.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Reached target Network.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Starting Permit User Sessions...
Sep 24 09:07:03 OpenVPNServer systemd[1]: Starting OpenVPN service...
Sep 24 09:07:03 OpenVPNServer systemd[1]: Starting OpenBSD Secure Shell server...
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started OpenVPN service.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started Permit User Sessions.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started Getty on tty1.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Reached target Login Prompts.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started OpenBSD Secure Shell server.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Reached target Multi-User System.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Reached target Graphical Interface.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Starting Update UTMP about System Runlevel Changes...
Sep 24 09:07:03 OpenVPNServer systemd[1]: Started Update UTMP about System Runlevel Changes.
Sep 24 09:07:03 OpenVPNServer systemd[1]: Startup finished in 2.170s (kernel) + 956ms (userspace) = 17.949s.
Sep 24 09:07:08 OpenVPNServer systemd[1]: Created slice User Slice of sad.
Sep 24 09:07:08 OpenVPNServer systemd[1]: Starting User Manager for UID 1000...
Sep 24 09:07:08 OpenVPNServer systemd[1]: Started Session 1 of user sad.
Sep 24 09:07:08 OpenVPNServer systemd[651]: Listening on GnuPG cryptographic agent (access for web browsers).
Sep 24 09:07:08 OpenVPNServer systemd[651]: Listening on GnuPG cryptographic agent and passphrase cache.
Sep 24 09:07:08 OpenVPNServer systemd[651]: Reached target Timers.
Sep 24 09:07:08 OpenVPNServer systemd[651]: Reached target Paths.
Sep 24 09:07:08 OpenVPNServer systemd[651]: Listening on GnuPG cryptographic agent (ssh-agent emulation).
Sep 24 09:07:08 OpenVPNServer systemd[651]: Listening on GnuPG cryptographic agent and passphrase cache (restricted).
Sep 24 09:07:08 OpenVPNServer systemd[651]: Reached target Sockets.
Sep 24 09:07:08 OpenVPNServer systemd[651]: Reached target Basic System.
Sep 24 09:07:08 OpenVPNServer systemd[651]: Reached target Default.
Sep 24 09:07:08 OpenVPNServer systemd[651]: Startup finished in 7ms.
Sep 24 09:07:08 OpenVPNServer systemd[1]: Started User Manager for UID 1000.
Mit diesen beiden Zeilen kann ich leider nicht viel anfangen. :-(

Code: Alles auswählen

Sep 24 09:07:03 OpenVPNServer ovpn-server[537]: disabling NCP mode (--ncp-disable) because not in P2MP client or server mode
Sep 24 09:07:03 OpenVPNServer ovpn-server[537]: Options error: Parameter ca_file can only be specified in TLS-mode, i.e. where --tls-server or --tls-client is also specified.

Benutzeravatar
bluestar
Beiträge: 2334
Registriert: 26.10.2004 11:16:34
Wohnort: Rhein-Main-Gebiet

Re: Layer2 Tunnel Konfigurieren

Beitrag von bluestar » 24.09.2018 09:27:15

joe2017 hat geschrieben: ↑ zum Beitrag ↑
24.09.2018 09:23:42

Code: Alles auswählen

Sep 24 09:07:03 OpenVPNServer ovpn-server[537]: disabling NCP mode (--ncp-disable) because not in P2MP client or server mode
Sep 24 09:07:03 OpenVPNServer ovpn-server[537]: Options error: Parameter ca_file can only be specified in TLS-mode, i.e. where --tls-server or --tls-client is also specified.
Meinen Vorschlag statt auf X509 Zertifikate auf OpenVPN-Keys zu setzen, davon hälst du anscheinend nichts:
bluestar hat geschrieben: ↑ zum Beitrag ↑
21.09.2018 11:41:07
Zur Vereinfachung würde ich dir dazu raten statt Zertifikate einfach auf OpenVPN Keys zu wechseln, macht bei einem Layer2 Tunnel irgendwie mehr Sinn, es gibt ja nur zwei Endpunkte (hoffentlich).
In der Manpage zu Openvpn findest du übrigend gültige Optionen:

Code: Alles auswählen

man openvpn

Benutzeravatar
joe2017
Beiträge: 1125
Registriert: 07.08.2017 14:29:51

Re: Layer2 Tunnel Konfigurieren

Beitrag von joe2017 » 24.09.2018 09:40:40

Wenn ich auf Keys wechsele ist mein Tunnel aber nicht mit der Vorgabe ECC384 verschlüsselt. Deshalb hab ich das erst gar nicht getestet. Meine Zertifikate haben ja bei einem tun VPN funktioniert.

Ich glaube mir fehlt auch noch folgende Zeile in der Server.conf

Code: Alles auswählen

server-bridge 10.8.0.1 255.255.255.0 10.8.0.10 10.8.0.20
Anbei das neue LOG

Code: Alles auswählen

Sep 24 09:55:17 OpenVPNServer systemd[1]: Starting Flush Journal to Persistent Storage...
Sep 24 09:55:17 OpenVPNServer lvm[263]:   2 logical volume(s) in volume group "OpenVPNServer-vg" monitored
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started Monitoring of LVM2 mirrors, snapshots etc. using dmeventd or progress polling.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started Flush Journal to Persistent Storage.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started udev Kernel Device Manager.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started udev Coldplug all Devices.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started Set the console keyboard layout.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Reached target Local File Systems (Pre).
Sep 24 09:55:17 OpenVPNServer systemd[1]: Found device /dev/mapper/OpenVPNServer--vg-swap_1.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Activating swap /dev/mapper/OpenVPNServer--vg-swap_1...
Sep 24 09:55:17 OpenVPNServer systemd[1]: Found device RTL8111/8168/8411 PCI Express Gigabit Ethernet Controller.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Activated swap /dev/mapper/OpenVPNServer--vg-swap_1.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Reached target Swap.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Found device Micron_1100_SATA_256GB 2.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Found device Micron_1100_SATA_256GB EFI\x20System\x20Partition.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Starting File System Check on /dev/disk/by-uuid/c9fe47b0-c131-46c8-a89b-70cbeb727210...
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started File System Check Daemon to report status.
Sep 24 09:55:17 OpenVPNServer systemd-fsck[408]: /dev/sda2: sauber, 331/62496 Dateien, 72315/249856 Blöcke
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started File System Check on /dev/disk/by-uuid/c9fe47b0-c131-46c8-a89b-70cbeb727210.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Mounting /boot...
Sep 24 09:55:17 OpenVPNServer systemd[1]: Mounted /boot.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Mounting /boot/efi...
Sep 24 09:55:17 OpenVPNServer systemd[1]: Mounted /boot/efi.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Reached target Local File Systems.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started ifup for enp2s0.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Starting Set console font and keymap...
Sep 24 09:55:17 OpenVPNServer systemd[1]: Starting Create Volatile Files and Directories...
Sep 24 09:55:17 OpenVPNServer systemd[1]: Starting Raise network interfaces...
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started Set console font and keymap.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started Create Volatile Files and Directories.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Starting Network Time Synchronization...
Sep 24 09:55:17 OpenVPNServer systemd[1]: Starting Update UTMP about System Boot/Shutdown...
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started Update UTMP about System Boot/Shutdown.
Sep 24 09:55:17 OpenVPNServer sh[422]: enp2s0=enp2s0
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started Network Time Synchronization.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Reached target System Time Synchronized.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Reached target System Initialization.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started Daily Cleanup of Temporary Directories.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Listening on PC/SC Smart Card Daemon Activation Socket.
Sep 24 09:55:17 OpenVPNServer systemd[1]: apt-daily.timer: Adding 2h 51min 27.436349s random time.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started Daily apt download activities.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Listening on D-Bus System Message Bus Socket.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Reached target Sockets.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Reached target Basic System.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started Regular background program processing daemon.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Starting System Logging Service...
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started D-Bus System Message Bus.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started irqbalance daemon.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Starting Login Service...
Sep 24 09:55:17 OpenVPNServer systemd[1]: Starting OpenVPN connection to server...
Sep 24 09:55:17 OpenVPNServer systemd[1]: apt-daily-upgrade.timer: Adding 43min 1.354681s random time.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started Daily apt upgrade and clean activities.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Reached target Timers.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started System Logging Service.
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started Login Service.
Sep 24 09:55:17 OpenVPNServer ovpn-server[467]: OpenVPN 2.4.0 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Jul 18 2017
Sep 24 09:55:17 OpenVPNServer ovpn-server[467]: library versions: OpenSSL 1.0.2l  25 May 2017, LZO 2.08
Sep 24 09:55:17 OpenVPNServer systemd[1]: Started OpenVPN connection to server.
Sep 24 09:55:17 OpenVPNServer ovpn-server[468]: NOTE: when bridging your LAN adapter with the TAP adapter, note that the new bridge adapter will often take on its own IP address that is different from what the LAN adapter was previously set to
Sep 24 09:55:17 OpenVPNServer ovpn-server[468]: Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sep 24 09:55:17 OpenVPNServer ovpn-server[468]: Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sep 24 09:55:17 OpenVPNServer ovpn-server[468]: TUN/TAP device tap0 opened
Sep 24 09:55:17 OpenVPNServer ovpn-server[468]: TUN/TAP TX queue length set to 100
Sep 24 09:55:17 OpenVPNServer ovpn-server[468]: Could not determine IPv4/IPv6 protocol. Using AF_INET
Sep 24 09:55:17 OpenVPNServer systemd-udevd[308]: Could not generate persistent MAC address for tap0: No such file or directory
Sep 24 09:55:17 OpenVPNServer ovpn-server[468]: Socket Buffers: R=[212992->212992] S=[212992->212992]
Sep 24 09:55:17 OpenVPNServer ovpn-server[468]: TCP/UDP: Socket bind failed on local address [AF_INET]10.8.0.1:1194: Cannot assign requested address
Sep 24 09:55:17 OpenVPNServer ovpn-server[468]: Exiting due to fatal error
Sep 24 09:55:17 OpenVPNServer ovpn-server[468]: Closing TUN/TAP interface
Sep 24 09:55:17 OpenVPNServer systemd[1]: openvpn@server.service: Main process exited, code=exited, status=1/FAILURE
Sep 24 09:55:17 OpenVPNServer systemd[1]: openvpn@server.service: Unit entered failed state.
Sep 24 09:55:17 OpenVPNServer systemd[1]: openvpn@server.service: Failed with result 'exit-code'.
Sep 24 09:55:24 OpenVPNServer systemd[1]: Reached target Sound Card.
Sep 24 09:55:24 OpenVPNServer ifup[499]: Mon Sep 24 09:55:24 2018 TUN/TAP device tap0 opened
Sep 24 09:55:24 OpenVPNServer ifup[499]: Mon Sep 24 09:55:24 2018 Persist state set to: ON
Sep 24 09:55:24 OpenVPNServer systemd-udevd[509]: Could not generate persistent MAC address for tap0: No such file or directory
Sep 24 09:55:24 OpenVPNServer systemd-udevd[530]: Could not generate persistent MAC address for br0: No such file or directory
Sep 24 09:55:24 OpenVPNServer ifup[499]: Waiting for br0 to get ready (MAXWAIT is 32 seconds).
Sep 24 09:55:24 OpenVPNServer systemd[1]: Started Raise network interfaces.
Sep 24 09:55:24 OpenVPNServer systemd[1]: Reached target Network.
Sep 24 09:55:24 OpenVPNServer systemd[1]: Starting Permit User Sessions...
Sep 24 09:55:24 OpenVPNServer systemd[1]: Starting OpenBSD Secure Shell server...
Sep 24 09:55:24 OpenVPNServer systemd[1]: Starting OpenVPN service...
Sep 24 09:55:24 OpenVPNServer systemd[1]: Started Permit User Sessions.
Sep 24 09:55:24 OpenVPNServer systemd[1]: Started OpenVPN service.
Sep 24 09:55:24 OpenVPNServer systemd[1]: Started Getty on tty1.
Sep 24 09:55:24 OpenVPNServer systemd[1]: Reached target Login Prompts.
Sep 24 09:55:24 OpenVPNServer systemd[1]: Started OpenBSD Secure Shell server.
Sep 24 09:55:24 OpenVPNServer systemd[1]: Reached target Multi-User System.
Sep 24 09:55:24 OpenVPNServer systemd[1]: Reached target Graphical Interface.
Sep 24 09:55:24 OpenVPNServer systemd[1]: Starting Update UTMP about System Runlevel Changes...
Sep 24 09:55:24 OpenVPNServer systemd[1]: Started Update UTMP about System Runlevel Changes.
Sep 24 09:55:24 OpenVPNServer systemd[1]: Startup finished in 2.427s (kernel) + 7.899s (userspace) = 25.067s.
Sep 24 09:55:29 OpenVPNServer systemd[1]: Created slice User Slice of sad.
Sep 24 09:55:29 OpenVPNServer systemd[1]: Starting User Manager for UID 1000...
Sep 24 09:55:29 OpenVPNServer systemd[1]: Started Session 1 of user sad.
Sep 24 09:55:29 OpenVPNServer systemd[644]: Reached target Paths.
Sep 24 09:55:29 OpenVPNServer systemd[644]: Reached target Timers.
Sep 24 09:55:29 OpenVPNServer systemd[644]: Listening on GnuPG cryptographic agent (access for web browsers).
Sep 24 09:55:29 OpenVPNServer systemd[644]: Listening on GnuPG cryptographic agent and passphrase cache (restricted).
Sep 24 09:55:29 OpenVPNServer systemd[644]: Listening on GnuPG cryptographic agent and passphrase cache.
Sep 24 09:55:29 OpenVPNServer systemd[644]: Listening on GnuPG cryptographic agent (ssh-agent emulation).
Sep 24 09:55:29 OpenVPNServer systemd[644]: Reached target Sockets.
Sep 24 09:55:29 OpenVPNServer systemd[644]: Reached target Basic System.
Sep 24 09:55:29 OpenVPNServer systemd[644]: Reached target Default.
Sep 24 09:55:29 OpenVPNServer systemd[644]: Startup finished in 7ms.
Sep 24 09:55:29 OpenVPNServer systemd[1]: Started User Manager for UID 1000.

Benutzeravatar
bluestar
Beiträge: 2334
Registriert: 26.10.2004 11:16:34
Wohnort: Rhein-Main-Gebiet

Re: Layer2 Tunnel Konfigurieren

Beitrag von bluestar » 24.09.2018 15:21:34

Versuch mal die Optionen

Code: Alles auswählen

mode server
tls-server
und für Logs wäre NoPaste deutlich angenehmer zu lesen.

Antworten