From owner-freebsd-questions@FreeBSD.ORG Tue May 10 22:02:19 2011 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 48B031065673 for ; Tue, 10 May 2011 22:02:19 +0000 (UTC) (envelope-from cswiger@mac.com) Received: from asmtpout018.mac.com (asmtpout018.mac.com [17.148.16.93]) by mx1.freebsd.org (Postfix) with ESMTP id 2C02B8FC08 for ; Tue, 10 May 2011 22:02:18 +0000 (UTC) MIME-version: 1.0 Content-type: text/plain; charset=windows-1252 Received: from cswiger1.apple.com ([17.209.4.71]) by asmtp018.mac.com (Oracle Communications Messaging Exchange Server 7u4-20.01 64bit (built Nov 21 2010)) with ESMTPSA id <0LL000HVD2JP2D40@asmtp018.mac.com> for freebsd-questions@freebsd.org; Tue, 10 May 2011 15:02:18 -0700 (PDT) X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:5.2.15,1.0.148,0.0.0000 definitions=2011-05-10_12:2011-05-11, 2011-05-10, 1970-01-01 signatures=0 X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 spamscore=0 ipscore=0 suspectscore=0 phishscore=0 bulkscore=0 adultscore=0 classifier=spam adjust=0 reason=mlx engine=6.0.2-1012030000 definitions=main-1105100156 From: Chuck Swiger In-reply-to: <947562.11016.qm@web36501.mail.mud.yahoo.com> Date: Tue, 10 May 2011 15:02:13 -0700 Content-transfer-encoding: quoted-printable Message-id: References: <4DC97839.6010108@mage.hu> <4DC982B2.6090303@mage.hu> <4DC98B05.7080503@mage.hu> <20110510221009.49a1c6ea@ukr.net> <180587.39161.qm@web36506.mail.mud.yahoo.com> <947562.11016.qm@web36501.mail.mud.yahoo.com> To: Bill Tillman X-Mailer: Apple Mail (2.1084) Cc: freebsd-questions@freebsd.org Subject: Re: OpenVPN Setup X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 May 2011 22:02:19 -0000 On May 10, 2011, at 2:50 PM, Bill Tillman wrote: >> OpenVPN's site provides fine documentation: >>=20 >> http://openvpn.net/index.php/open-source/documentation.html >> = http://openvpn.net/index.php/open-source/documentation/miscellaneous/78-st= atic-key-mini-howto.html [ ... ] > I'm working through the docs you referenced in the HOWTO and it says: > Next, initialize the PKI. On Linux/BSD/Unix: >=20 > . ./vars > ./clean-all > ./build-ca If you're trying to setup a CA for PKI, then you're not following the = static key document: "Static Key Mini-HOWTO Introduction Static key configurations offer the simplest setup, and are ideal for = point-to-point VPNs or proof-of-concept testing. Static Key advantages =95 Simple Setup =95 No X509 PKI (Public Key Infrastructure) to maintain" > the vars file is not executable and from what I see in the Makefile = they want to chmod it to 644....I tried /bin/sh ./vars and it seemed to = work but then when I run ./clean-all which is executable I get > Please source the vars script first (i.e. ". ./vars") Yes. The directions assume you are running /bin/sh (or = Bourne-compatible shells bash, ksh, zsh, etc). Do that, and ". ./vars" will work. Running "/bin/sh ./vars" also works, = but is useless because it changes the variables in a subshell which = exits once it finishes processing the ./vars file. > Make sure you have edited it to reflect your configuration. > I'm stumped as this appears to be something Linux will handle but not = FreeBSD....any suggestions? Yes, follow the directions. OpenVPN works fine on FreeBSD. Regards, --=20 -Chuck