network_stuff:vpn_troubleshooting
This is an old revision of the document!
Cisco
Juniper SRX
Juniper Netscreen
Checkpoint
OPENVPN
-
- pki, ca, server and client cert (after being generated) + configuration , in : /etc/openvpn/server
- For logs:
/etc/openvpn/server/openvpn.log /etc/openvpn/server/openvpn-status.log
- On the server:
systemctl enable firewalld systemctl start firewalld firewall-cmd --permanent --add-service openvpn firewall-cmd --permanent --add-masquerade # also enable ip forwarding with sysctl.conf and don't forget systemctl restart network.service
Start server:
systemctl start openvpn-server@server.service # Server
Create ovpn file and start client: generate_openvpn_config.sh
openvpn --config /home/jaime/ovpnrpi/client4.ovpn # client
If redirection fails:
systemctl stop firewalld systemctl start firewalld
LINUX VPN-CLIENT
https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/clients.md#linux
START:
mkdir -p /var/run/xl2tpd touch /var/run/xl2tpd/l2tp-control service strongswan restart service xl2tpd restart strongswan up myvpn echo "c myvpn" > /var/run/xl2tpd/l2tp-control ip route add 0/0 dev ppp0
STOP:
ip route del 0/0 dev ppp0 echo "d myvpn" > /var/run/xl2tpd/l2tp-control strongswan down myvpn
INVESTIGATE WHY CRASHES SOMETIMES:
May 9 05:16:22 observium xl2tpd: xl2tpd[23954]: Maximum retries exceeded for tunnel 23919. Closing. May 9 05:16:22 observium xl2tpd: xl2tpd[23954]: Connection 61860 closed to 148.64.56.150, port 1701 (Timeout)
network_stuff/vpn_troubleshooting.1544090897.txt.gz · Last modified: (external edit)
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
