Hello, yes I am running RHEL7.
I have fixed the issues about unknown options but still the connection fails with an openssl error: OpenSSL: error:0607A082:digital envelope routines:EVP_CIPHER_CTX_set_key_length:invalid key length Do you have any further idea? I have downgraded to 2.3.14 and it works again. Kind regards Philipp Rehs On 29.06.2017 13:30, David Sommerseth wrote: > On 29/06/17 09:55, Philipp Helo Rehs wrote: >> Hello, >> >> i am running Redhat 7 and use openvpn 2.4.3 from epel but i have got a >> big problem since the update from 2.3.x > > I hope you mean RHEL 7 (Red Hat Enterprise Linux 7) and not Red Hat > Linux 7 (released in September 2000). > >> Jun 28 18:32:38 vpn openvpn-zuvsupport[23218]: TCP connection >> established with [AF_INET]x.x.x.x:39682 >> Jun 28 18:32:39 vpn openvpn-zuvsupport[23218]: x.x.x.x:39682 peer info: >> IV_VER=2.4.3 >> Jun 28 18:32:39 vpn openvpn-zuvsupport[23218]: x.x.x.x:39682 peer info: >> IV_PLAT=linux >> Jun 28 18:32:39 vpn openvpn-zuvsupport[23218]: x.x.x.x:39682 peer info: >> IV_PROTO=2 >> Jun 28 18:32:39 vpn openvpn-zuvsupport[23218]: x.x.x.x:39682 peer info: >> IV_NCP=2 >> Jun 28 18:32:39 vpn openvpn-zuvsupport[23218]: x.x.x.x:39682 peer info: >> IV_LZ4=1 >> Jun 28 18:32:39 vpn openvpn-zuvsupport[23218]: x.x.x.x:39682 peer info: >> IV_LZ4v2=1 >> Jun 28 18:32:39 vpn openvpn-zuvsupport[23218]: x.x.x.x:39682 peer info: >> IV_LZO=1 >> Jun 28 18:32:39 vpn openvpn-zuvsupport[23218]: x.x.x.x:39682 peer info: >> IV_COMP_STUB=1 >> Jun 28 18:32:39 vpn openvpn-zuvsupport[23218]: x.x.x.x:39682 peer info: >> IV_COMP_STUBv2=1 >> Jun 28 18:32:39 vpn openvpn-zuvsupport[23218]: x.x.x.x:39682 peer info: >> IV_TCPNL=1 >> Jun 28 18:32:39 vpn openvpn-zuvsupport[23218]: x.x.x.x:39682 TLS: >> Username/Password authentication succeeded for username 'username' [CN SET] >> Jun 28 18:32:39 vpn openvpn-zuvsupport[23218]: x.x.x.x:39682 Control >> Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384 >> Jun 28 18:32:39 vpn openvpn-zuvsupport[23218]: x.x.x.x:39682 [username] >> Peer Connection Initiated with [AF_INET]x.x.x.x:39682 >> Jun 28 18:32:39 vpn openvpn-zuvsupport[23218]: username/x.x.x.x:39682 >> Options error: Unrecognized option or missing or extra parameter(s) in >> /etc/openvpn/ccd/username:1: reset-routes (2.4.3) > > You have something odd here. --reset-routes is not a known option. You > might mean --push-reset, --push-remove. Alternatively, the client side > can use --pull-filter. > > OpenVPN v2.4 will choke and die on invalid options. Basically because > it doesn't understand what you wanted to do. > > > -- > kind regards, > > David Sommerseth > ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ Openvpn-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openvpn-users
