You have to add port 22 in External Access to allow ssh
directly.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
toby
Sent: Monday, December 03, 2007 11:41 PM
To: efw-user@lists.sourceforge.net
Subject: Re: [Efw-user] New efw 2.1.2 installation unable to
OpenVPN
This is very odd. I simply click the Download CA link in web
interface and it saves as .pem. Changing the file to .crt
and modifying client.ovpn file to reflect the change makes
no difference.
The only way I can ssh into the EFW box is to ssh into
another machine on LAN and then SSH into the GREEN NIC. It
would be nice if I could SSH into the RED NIC and just
disable root from SSH.
Toby.
On Dec 4, 2007 12:14 AM, compdoc <HYPERLINK
"mailto:[EMAIL PROTECTED]"[EMAIL PROTECTED]> wrote:
Certainly worth enabling for testing.
I once had trouble connecting. I found that the user account
I had created had stopped working. I had to delete the
account and recreate it.
This seemed to occur after I had created and then edited the
account, or maybe made some major change to the system. I
don't really know why it stopped working, but after
recreating it, it worked.
You seem to not be receiving the key (cert), or you're not
sending it. The client is outside the lan? Can you connect
by ssh?
Also, maybe rename the cert to .cer, or find out why yours
are ending in .pem
Map looks fine.
From: HYPERLINK
"mailto:[EMAIL PROTECTED]"
[EMAIL PROTECTED] [mailto:HYPERLINK
"mailto:[EMAIL PROTECTED]" \n
[EMAIL PROTECTED] On Behalf Of toby
Sent: Monday, December 03, 2007 9:54 PM
To: HYPERLINK "mailto:[EMAIL PROTECTED]"
[EMAIL PROTECTED]
Cc: HYPERLINK "mailto:efw-user@lists.sourceforge.net";
[EMAIL PROTECTED]
Subject: Re: [Efw-user] New efw 2.1.2 installation unable to
OpenVPN
I followed the KB and i still can't connect. I am not using
EFW's DHCP server. Does that matter? I continue to get the
same error messages that I posted earlier.
"
Mon Dec 03 21:51:43 2007 TLS Error: TLS key negotiation
failed to occur within 60 seconds (check your network
connectivity)
Mon Dec 03 21:51:43 2007 TLS Error: TLS handshake failed
Mon Dec 03 21:51:43 2007 TCP/UDP: Closing socket
Mon Dec 03 21:51:43 2007 SIGUSR1[soft,tls-error] received,
process restarting
Mon Dec 03 21:51:43 2007 Restart pause, 2 second(s)
"
I've included an ASCII network diagram below.
007 12:20 PM
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.5.503 / Virus Database: 269.16.13/1167 - Release
Date: 12/3/2007 12:20 PM
------------------------------------------------------------
-------------
SF.Net email is sponsored by: The Future of Linux Business
White Paper
from Novell. From the desktop to the data center, Linux is
going
mainstream. Let it simplify your IT future.
HYPERLINK
"http://altfarm.mediaplex.com/ad/ck/8857-50307-18918-4";
\nhttp://altfarm.mediaplex.com/ad/ck/8857-50307-18918-4
_______________________________________________
Efw-user mailing list
HYPERLINK
"mailto:Efw-user@lists.sourceforge.net"[EMAIL PROTECTED]
forge.net
HYPERLINK
"https://lists.sourceforge.net/lists/listinfo/efw-user";
\nhttps://lists.sourceforge.net/lists/listinfo/efw-user
No virus found in this incoming message.
Checked by AVG Free Edition.
Version: 7.5.503 / Virus Database: 269.16.13/1167 - Release
Date: 12/3/2007 12:20 PM
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.5.503 / Virus Database: 269.16.13/1170 - Release
Date: 12/4/2007 10:52 AM
-------------------------------------------------------------------------
SF.Net email is sponsored by: The Future of Linux Business White Paper
from Novell. From the desktop to the data center, Linux is going
mainstream. Let it simplify your IT future.
http://altfarm.mediaplex.com/ad/ck/8857-50307-18918-4
_______________________________________________
Efw-user mailing list
Efw-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/efw-user
