You have saved my life. This was exactly what I was looking for – I didn’t know network-manager-openvpn couldn’t use the .p12 file and you had to extract the individual certs/keys from it. Not something someone everyone would know. Thanks!!
The p12 file is encrypted, and you need to enter the password in order to decrypt the p12 file and its content. It’s not possible to extract the certificates and keys while they are encrypted.
Thanks guys, i first was trying to create a vpn connection with kvpnc but couldn’ t get it to work anymore. When i followed your instructions i was online in less then 2 minutes!
Hi this has got me far closer to getting things working but I am not quite there yet!
I can connect to ipcop using openvpn by feeding it the .ovpn file at the command line but NM won’t play.
the .ovpn says I am a tls-client so I am guessing I need something in NM set up to authorise by tls but I don’t know what to put in here (I tried each of the files extracted from the p12 file but nothing worked)
at no point does NM ask for a passphrase and it returns a failed to connect error after reaching ‘80% activation stage: getting ip configuration’
Anyone any ideas what to do next?
[...] MYHREN.ORG » Networkmanager and openvpn [...]
Thanks, this was very helpful!
You have saved my life. This was exactly what I was looking for – I didn’t know network-manager-openvpn couldn’t use the .p12 file and you had to extract the individual certs/keys from it. Not something someone everyone would know. Thanks!!
thanks for da info .. my ovpn got connected to ipcop, but i didnt have actual route, can ya help me?
$ netstat -rn
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt Iface
21x.xx.xxx.x2 192.168.1.1 255.255.255.255 UGH 0 0 0 eth0
172.16.85.0 0.0.0.0 255.255.255.0 U 0 0 0 vmnet8
192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
192.168.27.0 0.0.0.0 255.255.255.0 U 0 0 0 vmnet1
0.0.0.0 0.0.0.0 0.0.0.0 U 0 0 0 tun0
$ ifconfig tun0
tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:10.193.196.6 P-t-P:10.193.196.5 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1412 Metric:1
RX packets:12 errors:0 dropped:0 overruns:0 frame:0
TX packets:109 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:314 (314.0 b) TX bytes:12706 (12.4 KB)
$
i got connected .. but i cant ping my network behind the ipcop ..
i think because of this:
0.0.0.0 0.0.0.0 0.0.0.0 U 0 0 0 tun0
if i connected manually using console, i got this result :
$ netstat -rn
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt Iface
10.193.196.1 10.193.196.5 255.255.255.255 UGH 0 0 0 tun0
2xx.xx.xxx.x2 192.168.1.1 255.255.255.255 UGH 0 0 0 eth0
10.193.196.5 0.0.0.0 255.255.255.255 UH 0 0 0 tun0
172.16.85.0 0.0.0.0 255.255.255.0 U 0 0 0 vmnet8
192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
172.16.1.0 10.193.196.5 255.255.255.0 UG 0 0 0 tun0
192.168.27.0 0.0.0.0 255.255.255.0 U 0 0 0 vmnet1
0.0.0.0 10.193.196.5 128.0.0.0 UG 0 0 0 tun0
128.0.0.0 10.193.196.5 128.0.0.0 UG 0 0 0 tun0
0.0.0.0 192.168.1.1 0.0.0.0 UG 0 0 0 eth0
I am not a network expert, but you must check your logs, since it appears that when NM is calling ovpn, it does not push route information.
Does this work in a windows environment, and have others been able to connect to this IPcop server?
[...] benutzen p12-Zertifikate und die unterstützt das Frontend nicht. Ein wenig gegoogelt und auf die Lösung [...]
What is a PEM Passphrase? Sorry but when I try to extract files from the p12 file they don’t want to come.
The p12 file is encrypted, and you need to enter the password in order to decrypt the p12 file and its content. It’s not possible to extract the certificates and keys while they are encrypted.
Hope you get it working!
Thanks guys, i first was trying to create a vpn connection with kvpnc but couldn’ t get it to work anymore. When i followed your instructions i was online in less then 2 minutes!
Grts, Ron
Hi this has got me far closer to getting things working but I am not quite there yet!
I can connect to ipcop using openvpn by feeding it the .ovpn file at the command line but NM won’t play.
the .ovpn says I am a tls-client so I am guessing I need something in NM set up to authorise by tls but I don’t know what to put in here (I tried each of the files extracted from the p12 file but nothing worked)
at no point does NM ask for a passphrase and it returns a failed to connect error after reaching ‘80% activation stage: getting ip configuration’
Anyone any ideas what to do next?