← Back to team overview

ubuntu-phone team mailing list archive

Re: M10 Tablet - OpenVPN .conf location

 

Ok, so after looking here:
https://launchpad.net/canonical-devices-system-image/+milestone/11

Looks like this will be updated in OTA11 to include username/password auth.
https://bugs.launchpad.net/ubuntu/+source/indicator-network/+bug/1567389

I think it would still be nice to be able to custom mod the conf file.



On 04/24/2016 09:03 PM, Skyflyer wrote:
>
> Trying to ftp openvpn.conf file from Arch laptop to M10 tablet to drop
> into /etc/openvpn dir when I get the error:
>
> /root@ubuntu-phablet:/home/phablet/Documents# mv openvpn.conf
> /etc/openvpn///
> //mv: inter-device move failed: ‘cryptostorm.conf’ to
> ‘/etc/openvpn/cryptostorm.conf’; unable to remove target: Read-only
> file system/
>
> /root@ubuntu-phablet:/etc/openvpn# openvpn --version//
> //OpenVPN 2.3.2 arm-unknown-linux-gnueabihf [SSL (OpenSSL)] [LZO]
> [EPOLL] [PKCS11] [eurephia] [MH] [IPv6] built on Apr 13 2015//
> //Originally developed by James Yonan//
> //Copyright (C) 2002-2010 OpenVPN Technologies, Inc. <sales@xxxxxxxxxxx>//
> //Compile time defines: enable_crypto=yes enable_debug=yes
> enable_def_auth=yes enable_dependency_tracking=no
> enable_dlopen=unknown enable_dlopen_self=unknown
> enable_dlopen_self_static=unknown enable_eurephia=yes
> enable_fast_install=yes enable_fragment=yes enable_http_proxy=yes
> enable_iproute2=yes enable_libtool_lock=yes enable_lzo=yes
> enable_lzo_stub=no enable_maintainer_mode=no enable_management=yes
> enable_multi=yes enable_multihome=yes enable_pam_dlopen=no
> enable_password_save=yes enable_pedantic=no enable_pf=yes
> enable_pkcs11=yes enable_plugin_auth_pam=yes
> enable_plugin_down_root=yes enable_plugins=yes enable_port_share=yes
> enable_selinux=no enable_server=yes enable_shared=yes
> enable_shared_with_static_runtimes=no enable_small=no enable_socks=yes
> enable_ssl=yes enable_static=yes enable_strict=no
> enable_strict_options=no enable_systemd=yes enable_win32_dll=yes
> enable_x509_alt_username=yes with_crypto_library=openssl
> with_gnu_ld=yes with_ifconfig_path=/sbin/ifconfig
> with_iproute_path=/sbin/ip with_mem_check=no
> with_plugindir='${prefix}/lib/openvpn' with_route_path=/sbin/route
> with_sysroot=no/
>
>
> Is there a work around for this?  Another place to locate the .conf
> file?  Where does the GUI place them?
> Shown below is what I'm currently using for my openvpn.conf file (with
> some editing).  I'd like to transfer this over to M10 and then run
> command "service openvpn start/stop" to activate or be able to turn
> on/off from GUI.  Anyone have suggestions?
>
> Arch is using systemd... so on my laptop I use "sudo systemctl enable
> openvpn@vpn" which activates at bootup and then "sudo systemctl
> stop/start openvpn@vpn" when I have issues with tunnel and need to
> restart things.  Would be nice to have this functionality with the M10.
>
>
> /root@ubuntu-phablet:/home/phablet/Documents# cat openvpn.conf //
> //client//
> //dev tun//
> //resolv-retry 16//
> //nobind//
> //float//
> //txqueuelen 686//
> //sndbuf size 1655368//
> //rcvbuf size 1655368//
> //<connection>//
> //remote ##########.net 443 udp//
> //</connection>//
> //comp-lzo no//
> //down-pre//
> //allow-pull-fqdn//
> //script-security 2//
> //up /etc/openvpn/update-resolv-conf//
> //down /etc/openvpn/update-resolv-conf//
> //explicit-exit-notify 3//
> //hand-window 37//
> //mssfix 1400//
> //auth-user-pass /root/.cs//
> //auth-retry nointeract//
> //ca ca.crt//
> //
> //<ca>//
> //-----BEGIN CERTIFICATE-----//
> //MIIFHjCCBAagAwIBAgIJAKekpGXxXvhbMA0GCSqGSIb3DQEBCwUAMIG6MQswCQYD//
> //VQQGEwJDQTELMAkGA1UECBMCUUMxETAPBgNVBAcTCE1vbnRyZWFsMTYwNAYDVQQK//
> //FC1LYXRhbmEgSG9sZGluZ3MgTGltaXRlIC8gIGNyeXB0b3N0b3JtX2RhcmtuZXQx//
> //-----END CERTIFICATE-----//
> //</ca>//
> //
> //ns-cert-type server//
> //auth SHA512//
> //cipher AES-256-CBC//
> //replay-window 128 30//
> //tls-cipher TLS-DHE-RSA-WITH-AES-256-CBC-SHA//
> //tls-client//
> //key-method 2//
> //log devnull.txt//
> //verb 4//
> //mute 15//
> //
> /
>
>
>


References