I built a new Untangle server on new hardware. I exported my configurations and imported them on the new system. All my existing VPN clients were able to connect but if I create a new client are distribute a new packet for an existing client they can not connect to the OpenVPN server.
Like I said the VPN works with existing certificates it is only new clients and re-distributed clients that will not work after the migration. Any Ideas?
Build: 9.4.0~svn20130131r33881release9.4-1lenny
Kernel: 2.6.26-2-untangle-amd64
History: yes (114)
Reboots: 1 (0)
Jun 25 15:28:27 HP-Laptop NetworkManager[986]: <info> Starting VPN service 'openvpn'...
Jun 25 15:28:27 HP-Laptop NetworkManager[986]: <info> VPN service 'openvpn' started (org.freedesktop.NetworkManager.openvpn), PID 30740
Jun 25 15:28:27 HP-Laptop NetworkManager[986]: <info> VPN service 'openvpn' appeared; activating connections
Jun 25 15:28:27 HP-Laptop NetworkManager[986]: <info> VPN plugin state changed: init (1)
Jun 25 15:28:27 HP-Laptop NetworkManager[986]: <info> VPN plugin state changed: starting (3)
Jun 25 15:28:27 HP-Laptop NetworkManager[986]: <info> VPN connection 'dfdc-liz' (Connect) reply received.
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: OpenVPN 2.2.1 i686-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [eurephia] [MH] [PF_INET6] [IPv6 payload 20110424-2 (2.2RC2)] built on Feb 27 2013
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: LZO compression initialized
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: UDPv4 link local: [undef]
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: UDPv4 link remote: [AF_INET]999.999.999.999:1194
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: VERIFY ERROR: depth=1, error=self signed certificate in certificate chain: /CN=ca.does.not.exists/C=US/ST=Virginia/L=Reston/O=AIBS/OU=c1b4250d5eef52f/dnQualifier=certificateAuthority
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: TLS_ERROR: BIO read tls_read_plaintext error: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: TLS Error: TLS object -> incoming plaintext read error
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: TLS Error: TLS handshake failed
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: SIGUSR1[soft,tls-error] received, process restarting
Like I said the VPN works with existing certificates it is only new clients and re-distributed clients that will not work after the migration. Any Ideas?
Build: 9.4.0~svn20130131r33881release9.4-1lenny
Kernel: 2.6.26-2-untangle-amd64
History: yes (114)
Reboots: 1 (0)
Jun 25 15:28:27 HP-Laptop NetworkManager[986]: <info> Starting VPN service 'openvpn'...
Jun 25 15:28:27 HP-Laptop NetworkManager[986]: <info> VPN service 'openvpn' started (org.freedesktop.NetworkManager.openvpn), PID 30740
Jun 25 15:28:27 HP-Laptop NetworkManager[986]: <info> VPN service 'openvpn' appeared; activating connections
Jun 25 15:28:27 HP-Laptop NetworkManager[986]: <info> VPN plugin state changed: init (1)
Jun 25 15:28:27 HP-Laptop NetworkManager[986]: <info> VPN plugin state changed: starting (3)
Jun 25 15:28:27 HP-Laptop NetworkManager[986]: <info> VPN connection 'dfdc-liz' (Connect) reply received.
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: OpenVPN 2.2.1 i686-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [eurephia] [MH] [PF_INET6] [IPv6 payload 20110424-2 (2.2RC2)] built on Feb 27 2013
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: LZO compression initialized
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: UDPv4 link local: [undef]
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: UDPv4 link remote: [AF_INET]999.999.999.999:1194
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: VERIFY ERROR: depth=1, error=self signed certificate in certificate chain: /CN=ca.does.not.exists/C=US/ST=Virginia/L=Reston/O=AIBS/OU=c1b4250d5eef52f/dnQualifier=certificateAuthority
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: TLS_ERROR: BIO read tls_read_plaintext error: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: TLS Error: TLS object -> incoming plaintext read error
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: TLS Error: TLS handshake failed
Jun 25 15:28:27 HP-Laptop nm-openvpn[30743]: SIGUSR1[soft,tls-error] received, process restarting