Anyways I found the direct path to the folder and happen to change the directory with privileges.
Now I have to figure out how to allow port forwarding through my firewall on port 1149 to establish a VPN connection on my system.
Can someone guide me?
I did everything detailed at
That config is practically empty, because all lines are commented out.
You need to remove the ‘#’ at the beginning of a line for that line to have any effect.
The last command you typed (systemctl status openvpn@client) does complain about that:
Feb 17 08:13:23 linux-069u openvpn[5151]: **Options error: You must define TUN/TAP device (--dev)**
Feb 17 08:13:23 linux-069u openvpn[5151]: **Use --help for more information.**
I.e. it failed because you didn’t specify the dev option (“dev tun”).
Client
remote "MY IP 1194"
ca "/etc/openvpn/easy-rsa/2.0/keys/ca.crt"
cert "/etc/openvpn/easy-rsa/2.0/keys/client1.crt"
key "etc/openvpn/easy-rsa/2.0/keys/client1.key"
comp-lzo "yes"
dev "tun"
proto "udp"
nobind
auth-nocache
script-security "2"
persist-key
persist-tun
user "nobody"
group "nobody"
remote-cert-tls "server"
**linux-069u:~ #** systemctl status openvpn@client
openvpn@client.service - OpenVPN tunneling daemon instance using /etc/openvpn/client.conf
Loaded: loaded (/usr/lib/systemd/system/openvpn@.service; enabled)
Active: inactive (dead)
Port 1194 is enabled on my router.
And my config seems right.
I have the 3 certificates & Keys for the client in its folder.
>:(
**linux-069u:~ #** systemctl status openvpn@client -l
openvpn@client.service - OpenVPN tunneling daemon instance using /etc/openvpn/client.conf
Loaded: loaded (/usr/lib/systemd/system/openvpn@.service; enabled)
Active: **failed** (Result: exit-code) since Thu 2016-02-18 01:15:12 EST; 22min ago
Process: 2788 ExecStart=/usr/sbin/openvpn --daemon --suppress-timestamps --writepid /var/run/openvpn/%i.pid --cd /e
tc/openvpn/ --config %i.conf **(code=exited, status=1/FAILURE)**
Feb 18 01:15:12 linux-069u openvpn[2788]: **Options error: Unrecognized option or missing parameter(s) in client.conf:1**
: Client (2.3.8)
Feb 18 01:15:12 linux-069u openvpn[2788]: **Use --help for more information.**
Clientremote 108.162.219.20 1194
ca /etc/openvpn/ca.crt
cert /etc/openvpn/client1.crt
key /etc/openvpn/client1.key
comp-lzo yes
dev tun
proto udp
nobind
auth-nocache
script-security 2
persist-key
persist-tun
user nobody
group nobody
remote-cert-tls server
My firewall configuration seems right
/etc/sysctl.conf is meant for local sysctl settings
sysctl reads settings from the following locations:
/boot/sysctl.conf-<kernelversion>
/lib/sysctl.d/*.conf
/usr/lib/sysctl.d/*.conf
/usr/local/lib/sysctl.d/*.conf
/etc/sysctl.d/*.conf
/run/sysctl.d/*.conf
/etc/sysctl.conf
net.ipv4.ip_forward =1
To disable or override a distribution provided file just place a
file with the same name in /etc/sysctl.d/
See sysctl.conf(5), sysctl.d(5) and sysctl(8) for more information
Feb 18 01:15:12 linux-069u openvpn[2788]: **Options error: Unrecognized option or missing parameter(s) in client.conf:1**
: Client (2.3.8)
Feb 18 01:15:12 linux-069u openvpn[2788]: **Use --help for more information.**
This is your line#1:
Clientremote 108.162.219.20 1194
ca /etc/openvpn/ca.crt
cert /etc/openvpn/client1.crt
...
It should be:
client
remote 108.162.219.20 1194
If the missing line feed is just a copy/paste error, then the problem is the upper case ‘C’ in “client”, it has to be lower case (‘c’).