- État Fermée
- Pourcentage achevé
- Type Anomalie
- Catégorie Services locaux → Client VPN
-
Assignée à
mbizon - Système d'exploitation Tous
- Sévérité Haute
- Priorité Très Basse
- Basée sur la version 2.1.0
- Due pour la version Non décidée
-
Échéance
Non décidée
- Votes
- Privée
Ouverte par seirem - 17/04/2014
Dernière modification par mbizon - 25/04/2014
FS#14679 - Client VPN authentification fail
Bonjour,
Je tente depuis la mise à jour de faire fonctionner le client VPN de la freebox V6 avec mon compte VPN (VyprVPN)
Comme décrit dans le ticket FS#14648 , j’ai copier le contenu txt du certificat entre les balise <ca> du fichier de configuration openvpn
Voici mon fichier de conf :
client
dev tun
proto udp
remote ru1.vyprvpn.com 1194
resolv-retry infinite
nobind
persist-key
persist-tun
persist-remote-ip
auth-user-pass
comp-lzo
verb 3
<ca>
—–BEGIN CERTIFICATE—– …..
—–END CERTIFICATE—– <ca>
Trace - journal de connexion :
2014-04-17 17:21:44 calling helper script at ‘/etc/fbxconnman/conn.post-down’ 2014-04-17 17:21:44 l3 state change ‘l3_cleanup_start’ ⇒ ‘l3_wait_postdown_helper’ 2014-04-17 17:21:44 openvpn: output: Thu Apr 17 17:21:44 2014 SIGTERM[soft,auth-failure] received, process exiting
2014-04-17 17:21:44 openvpn: output: Thu Apr 17 17:21:44 2014 MANAGEMENT: >STATE:1397748104,EXITING,auth-failure,,,,,0
2014-04-17 17:21:44 openvpn: openvpn process died (0)
2014-04-17 17:21:44 l3 state change ‘l3_wait_postdown_helper’ ⇒ ‘l3_cleanup_finish’ 2014-04-17 17:21:44 l3 state change ‘l3_cleanup_finish’ ⇒ ‘l3_finished’ 2014-04-17 17:21:44 state change ‘wait_l3_up’ ⇒ ‘wait_l3_down’ 2014-04-17 17:21:44 l3 state change ‘l3_finished’ ⇒ ‘l3_down’ 2014-04-17 17:21:44 state is now DOWN
2014-04-17 17:21:44 state change ‘wait_l3_down’ ⇒ ‘l3_finished’ 2014-04-17 17:21:44 state change ‘l3_finished’ ⇒ ‘wait_l2_down’ 2014-04-17 17:21:44 l2 state change ‘l2_up’ ⇒ ‘l2_cleanup’ 2014-04-17 17:21:44 l2 state change ‘l2_cleanup’ ⇒ ‘l2_down’ 2014-04-17 17:21:44 state change ‘wait_l2_down’ ⇒ ‘down’ 2014-04-17 17:23:31 state change ‘down’ ⇒ ‘wait_l2_up’ 2014-04-17 17:23:31 l2 state change ‘l2_down’ ⇒ ‘l2_up’ 2014-04-17 17:23:31 state change ‘wait_l2_up’ ⇒ ‘l2_up’ 2014-04-17 17:23:31 state change ‘l2_up’ ⇒ ‘wait_l3_up’ 2014-04-17 17:23:31 l3 state change ‘l3_down’ ⇒ ‘l3_start’ 2014-04-17 17:23:31 starting
2014-04-17 17:23:31 calling helper script at ‘/etc/fbxconnman/conn.pre-up’ 2014-04-17 17:23:31 l3 state change ‘l3_start’ ⇒ ‘l3_wait_preup_helper’ 2014-04-17 17:23:31 l3 state change ‘l3_wait_preup_helper’ ⇒ ‘l3_wait_stable’ 2014-04-17 17:23:31 openvpn: output: Thu Apr 17 17:23:31 2014 OpenVPN 2.3.2 arm-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Apr 11 2014
2014-04-17 17:23:31 openvpn: connected to management interface
2014-04-17 17:23:31 openvpn: output: Thu Apr 17 17:23:31 2014 MANAGEMENT: Connected to management server at unix_mgt.sock
2014-04-17 17:23:31 openvpn: rx: >INFO:OpenVPN Management Interface Version 1 – type ‘help’ for more info
2014-04-17 17:23:31 openvpn: rx: >HOLD:Waiting for hold release
2014-04-17 17:23:31 openvpn: tx: hold release
2014-04-17 17:23:31 openvpn: output: Thu Apr 17 17:23:31 2014 MANAGEMENT: CMD ‘hold release’ 2014-04-17 17:23:31 openvpn: rx: SUCCESS: hold release succeeded
2014-04-17 17:23:31 openvpn: output: Thu Apr 17 17:23:31 2014 MANAGEMENT: CMD ‘state on’ 2014-04-17 17:23:31 openvpn: rx: SUCCESS: real-time state notification set to ON
2014-04-17 17:23:31 openvpn: rx: >PASSWORD:Need ‘Auth’ username/password
2014-04-17 17:23:31 openvpn: tx: username “Auth” “seidita.remi@gmail.com” 2014-04-17 17:23:31 openvpn: output: Thu Apr 17 17:23:31 2014 MANAGEMENT: CMD ‘username “Auth” “seidita.remi@gmail.com”’ 2014-04-17 17:23:31 openvpn: rx: SUCCESS: ‘Auth’ username entered, but not yet verified
2014-04-17 17:23:31 openvpn: output: Thu Apr 17 17:23:31 2014 MANAGEMENT: CMD ‘password […]’ 2014-04-17 17:23:31 openvpn: rx: SUCCESS: ‘Auth’ password entered, but not yet verified
2014-04-17 17:23:31 openvpn: output: Thu Apr 17 17:23:31 2014 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
2014-04-17 17:23:31 openvpn: output: Thu Apr 17 17:23:31 2014 MANAGEMENT: >STATE:1397748211,WILL_CONNECT,ru1.vyprvpn.com,,,,,0
2014-04-17 17:23:31 openvpn: output: Thu Apr 17 17:23:31 2014 Socket Buffers: R=[172032→131072] S=[172032→131072]
2014-04-17 17:23:31 openvpn: output: Thu Apr 17 17:23:31 2014 MANAGEMENT: >STATE:1397748211,RESOLVE,,,,,,0
2014-04-17 17:23:32 openvpn: rx: >STATE:1397748211,WILL_CONNECT,ru1.vyprvpn.com,,,,,0
2014-04-17 17:23:32 openvpn: rx: >STATE:1397748211,RESOLVE,,,,,,0
2014-04-17 17:23:32 openvpn: rx: >STATE:1397748212,WAIT,,,,,,0
2014-04-17 17:23:32 openvpn: output: Thu Apr 17 17:23:32 2014 UDPv4 link local: [undef]
2014-04-17 17:23:32 openvpn: output: Thu Apr 17 17:23:32 2014 UDPv4 link remote: [AF_INET]138.199.67.134:1194
2014-04-17 17:23:32 openvpn: output: Thu Apr 17 17:23:32 2014 MANAGEMENT: >STATE:1397748212,WAIT,,,,,,0
2014-04-17 17:23:32 openvpn: output: Thu Apr 17 17:23:32 2014 MANAGEMENT: >STATE:1397748212,AUTH,,,,,,0
2014-04-17 17:23:32 openvpn: output: Thu Apr 17 17:23:32 2014 TLS: Initial packet from [AF_INET]138.199.67.134:1194, sid=0047666f af6ecf7d
2014-04-17 17:23:32 openvpn: rx: >STATE:1397748212,AUTH,,,,,,0
2014-04-17 17:23:32 openvpn: output: Thu Apr 17 17:23:32 2014 VERIFY OK: depth=1, C=KY, ST=GrandCayman, L=GeorgeTown, O=GoldenFrog-Inc, CN=GoldenFrog-Inc CA, emailAddress=admin@goldenfrog.com
2014-04-17 17:23:32 openvpn: output: Thu Apr 17 17:23:32 2014 VERIFY OK: depth=0, C=KY, ST=GrandCayman, L=GeorgeTown, O=GoldenFrog-Inc, CN=ru1.vyprvpn.com, emailAddress=admin@goldenfrog.com
2014-04-17 17:23:35 openvpn: output: Thu Apr 17 17:23:35 2014 Data Channel Encrypt: Cipher ‘BF-CBC’ initialized with 128 bit key
2014-04-17 17:23:35 openvpn: output: Thu Apr 17 17:23:35 2014 Data Channel Encrypt: Using 160 bit message hash ‘SHA1’ for HMAC authentication
2014-04-17 17:23:35 openvpn: output: Thu Apr 17 17:23:35 2014 Data Channel Decrypt: Cipher ‘BF-CBC’ initialized with 128 bit key
2014-04-17 17:23:35 openvpn: output: Thu Apr 17 17:23:35 2014 Data Channel Decrypt: Using 160 bit message hash ‘SHA1’ for HMAC authentication
2014-04-17 17:23:35 openvpn: output: Thu Apr 17 17:23:35 2014 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
2014-04-17 17:23:35 openvpn: output: Thu Apr 17 17:23:35 2014 [ru1.vyprvpn.com] Peer Connection Initiated with [AF_INET]138.199.67.134:1194
2014-04-17 17:23:36 openvpn: rx: >STATE:1397748216,GET_CONFIG,,,,,,0
2014-04-17 17:23:36 openvpn: output: Thu Apr 17 17:23:36 2014 MANAGEMENT: >STATE:1397748216,GET_CONFIG,,,,,,0
2014-04-17 17:23:37 openvpn: output: Thu Apr 17 17:23:37 2014 SENT CONTROL [ru1.vyprvpn.com]: ‘PUSH_REQUEST’ (status=1)
2014-04-17 17:23:37 openvpn: output: Thu Apr 17 17:23:37 2014 AUTH: Received control message: AUTH_FAILED
2014-04-17 17:23:37 openvpn: rx: >PASSWORD:Verification Failed: ‘Auth’ 2014-04-17 17:23:37 openvpn: username/password incorrect 2014-04-17 17:23:37 l3 is now stable
2014-04-17 17:23:37 l3 does not fulfil config requirement
2014-04-17 17:23:37 l3 state change ‘l3_wait_stable’ ⇒ ‘l3_bring_down’ 2014-04-17 17:23:37 waiting for l3 providers to go down
2014-04-17 17:23:37 l3 state change ‘l3_bring_down’ ⇒ ‘l3_wait_down’ 2014-04-17 17:23:37 l3 state change ‘l3_wait_down’ ⇒ ‘l3_cleanup_start’ 2014-04-17 17:23:37 calling helper script at ‘/etc/fbxconnman/conn.post-down’ 2014-04-17 17:23:37 l3 state change ‘l3_cleanup_start’ ⇒ ‘l3_wait_postdown_helper’ 2014-04-17 17:23:37 openvpn: output: Thu Apr 17 17:23:37 2014 SIGTERM[soft,auth-failure] received, process exiting
2014-04-17 17:23:37 openvpn: output: Thu Apr 17 17:23:37 2014 MANAGEMENT: >STATE:1397748217,EXITING,auth-failure,,,,,0
2014-04-17 17:23:37 openvpn: openvpn process died (0)
2014-04-17 17:23:37 l3 state change ‘l3_wait_postdown_helper’ ⇒ ‘l3_cleanup_finish’ 2014-04-17 17:23:37 l3 state change ‘l3_cleanup_finish’ ⇒ ‘l3_finished’ 2014-04-17 17:23:37 state change ‘wait_l3_up’ ⇒ ‘wait_l3_down’ 2014-04-17 17:23:37 l3 state change ‘l3_finished’ ⇒ ‘l3_down’ 2014-04-17 17:23:37 state is now DOWN
2014-04-17 17:23:37 state change ‘wait_l3_down’ ⇒ ‘l3_finished’ 2014-04-17 17:23:37 state change ‘l3_finished’ ⇒ ‘wait_l2_down’ 2014-04-17 17:23:37 l2 state change ‘l2_up’ ⇒ ‘l2_cleanup’ 2014-04-17 17:23:37 l2 state change ‘l2_cleanup’ ⇒ ‘l2_down’
Je peux apercevoir le message d’erreur “username/password incorrect”
Sauf que j’ai pu essayer en avec une connexion VPN PPTP et tout fonctionne correctement, via openVPN je ne comprend pas d’ou provient le problème….
Chargement...
Activer les raccourcis clavier
- Alt + ⇧ Shift + l Se connecter/Se déconnecter
- Alt + ⇧ Shift + a Ouvrir une tâche
- Alt + ⇧ Shift + m Mes recherches
- Alt + ⇧ Shift + t Rechercher par ID de tâche
Liste des tâches
- o Ouvrir la tâche sélectionnée
- j Déplacer le curseur vers le bas
- k Déplacer le curseur vers le haut
Détails de la tâche
- n Tâche suivante
- p Tâche précédente
- Alt + ⇧ Shift + e ↵ Enter Modifier cette tâche
- Alt + ⇧ Shift + w Surveiller
- Alt + ⇧ Shift + y Fermer cette tâche
Édition de la tâche
- Alt + ⇧ Shift + s Enregistrer la tâche
votre mot de passe contient-il des caractères non alphanumérique ?
Non du tout c’est chiffre et lettre (pas de caractères spéciaux)
Je pense qu’il faudrait faire évoluer le sujet de manière à ce qu’il y ait plus d’explication, sur la ou les méthodes à entreprendre suivant le besoin.
Utilisation du Client VPN free (via serveur VPN free)
Utilisation du client VPN free (via serveur VPN externe)
......
Votre VPN semble up ? ça fonctionne en fait ?
Effectivement, ça m’a l’air bon, j’ai utilisé la méthode décrite dans le ticket
FS#14648, mais ça n’a pas fonctionné du premier coup, j’ai eu pas mal d’erreur dans les logs, d’authentification fail....Mais la pour la peine ça fonctionne.
Une rubrique d’aide pour le VPN serais pas mal dans la webUI