plugout.net

[peetn]

Today I upgraded to version 14 (via 10.1).
Update was succesfull.

After update I have this error pages when clicking the appropriate link.

The requested URL /system/system_uploadfile.htm was not found on this server.
The requested URL /system/system_FtpServer.htm was not found on this server.
The requested URL /system/system_TorrentClient.htm was not found on this server.

"Algemene instellingen - Reset": gray page when I click the link

File Share menu:
Overview: images (public, samba, NFS, FTP, WebDav, Web Explorer) not showing
Example: /images/ok_green.gif~Ja
Clicking on the public link shows gray page

For all I can provide screenshot if needed.

PS: is there any support for OpenVPN or recommendations how to set up?

Thanks
P

[fvdw]

probably you did not close and open your browser to clear the caches of your browser
So do that and try again

[Jocko]

Hi peetn
:disapprove You didn't close your browser after upgrading (all browser windows must be close to clean the cache)

About openVPN, all files required to make an openvpn server are included with version14. You should find some advice in some firwareslut's post.

In the next months, I plan to create a menu to get a openVPN server, but I am not sure it will be ready for version 14.1.

[peetn]

You were correct! My mistake.
Thanks guys.
Now it works great, what a big improvement compared to my previous version! I really like it.
I hadn't updated in a long time.

I'll probably wait for the OpenVPN update then, good to know it is coming.
Keep up the good work!!

[peetn]

Hi again!

I found some time and already started playing with the OpenVPN... and I got it working! :woohoo
Onc you know how it's done, it not that difficult after all.
It just took me some time to get to know it.

Here is what I did.

To start the OpenVPN server

- I based myself on this topic: http://plugout.net/viewtopic.php?f=4&t=604&hilit=vpn&start=0
- Check existence TUN: TUN was OK
- Check existence config file: Missing, copied content from above site. No changes done.

Code: Select all

dev tun
proto udp
port 2224

ca /etc/openvpn/easy-rsa/keys/ca.crt
cert /etc/openvpn/easy-rsa/keys/server.crt
key /etc/openvpn/easy-rsa/keys/server.key
dh /etc/openvpn/easy-rsa/keys/dh1024.pem

user nobody
group nobody

server 10.8.0.0 255.255.255.0
push "redirect-gateway def1"
keepalive 10 120
duplicate-cn
max-clients 10

persist-key
persist-tun

verb 3
client-to-client


- Check keys in /etc/openvpn/easy-rsa/keys. This was a blank folder. So generated with help of readme.txt in /etc/openvpn/easy-rsa. For that, I duplicated the "vars" file just as a precaution. I changed the values of the following keys as described in the readme. Nothing else has been changed.

KEY_COUNTRY
KEY_PROVINCE
KEY_CITY
KEY_ORG
KEY_EMAIL
KEY_EMAIL

- Testing by calling

Code: Select all

openvpn --config /etc/openvpn/openvpn.conf

> whichopensslcnf file was missing. I had to create it, based on what I found here https://forums.openvpn.net/topic10528.html.

Code: Select all

cnf="$1/openssl.cnf"

if [ "$OPENSSL" ]; then
   if $OPENSSL version | grep -E "0\.9\.6" > /dev/null; then
      cnf="$1/openssl-0.9.6.cnf"
   elif $OPENSSL version | grep -E "0\.9\.8" > /dev/null; then
      cnf="$1/openssl-0.9.8.cnf"
   elif $OPENSSL version | grep -E "1\.0\.[[:digit:]]" > /dev/null; then
                cnf="$1/openssl-1.0.0.cnf"
   else
      cnf="$1/openssl.cnf"
   fi
fi

echo $cnf

if [ ! -r $cnf ]; then
    echo "**************************************************************" >&2
    echo "  No $cnf file could be found" >&2
    echo "  Further invocations will fail" >&2
    echo "**************************************************************" >&2
fi

exit 0


- Second testing did it! It was starting!!


Port forwarding
Just forwarded port 2224 (UDP) in the router to the IP of the device.

Note: daemon mode (http://openvpn.net/index.php/open-source/documentation/miscellaneous/88-1xhowto.html)
To start OpenVPN in Daemon mode:

Code: Select all

openvpn --daemon --config /etc/openvpn/openvpn.conf

To stop in daemon mode:

Code: Select all

killall -TERM openvpn

Below I'll write what I did to get some clients working.

[peetn]

Get OpenVPN working for:
iOS Client

Note: replace [myhostname] with the real host name of the client

1) Create client CA keys (again info found in RSA readme.txt)
- ./build-key [myhostname] (RSA.txt)
- gave "name" parameter a value when prompting, skipped the others
- sign the certificate? (no idea, I selected yes)

2) Create .ovpn file
- based on this site http://louwrentius.com/blog/2013/01/setup-a-vpn-on-your-iphone-with-openvpn-and-linux/
- create hostname.ovpn

Contents of my .ovpn file:

Code: Select all

tls-client
remote [put your public IP address here]
ca ca.crt
cert [myhostname].crt
key [myhostname].key
port 2224
proto udp


3) Upload files to iOS device
- As described in site above, I uploaded the following files via iTunes using a cable to OpenVPN app:
ca.crt
[myhostname].crt
[myhostname].key
[myhostname].ovpn

4) Launch OpenVPN on iPhone. It has noticed the connection to "[myhostname]". You can approve it this.
Next, the enable switch is there to connect! It worked right away!

[peetn]

To get OpenVPN working for:
Windows 7 Client

1) Create client CA keys as above for iOS client

2) Install OpenVPN software (http://openvpn.net/index.php/download.html)

3) Set up config

- go to C:\Program Files\openVPN\config
- add .ovpn file (name will show up in OpenVPN)
- add [myhostname].crt
- add [myhostname].key
- add ca.crt

Contents of my .ovpn file:

Code: Select all

client
dev tun
proto udp
remote [put your public IP address here] 2224
resolv-retry infinite
nobind
persist-key
persist-tun
persist-remote-ip
ca ca.crt
#auth-user-pass      - if you want log in with user and pwd
cert [myhostname].crt
key [myhostname].key
comp-lzo
verb 3
ns-cert-type server


3) Launch OpenVPN GUI and connect to your network. It should work.
If not, just open the logs of OpenVPN on your Windows machine, it helped me out too.

[peetn]

There is still a question I couldn't solve yet: how to get internet access when on VPN?

Based on this topic http://plugout.net/viewtopic.php?f=11&t=989&hilit=iptables+vpn&start=0 I can indeed confirm iptables is present.
Next, I updated /etc/ppp/options.pptpd as described in the link.

However, when testing, like using iptables -L -n, I get this:

Code: Select all

modprobe: module 'ip_tables' not found
iptables v1.4.12.2: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.

Anyone has an idea?

[fvdw]

this is a spd8020 correct ?

yes this doesn't has iptables build into the kernel as it makes it too big it will need to be loaded as module plush a bunch of others
I can look if I still have the modules

[fvdw]

here they are, I assume you know what to do with them