Всем привет!
p10
Подскажите, как это работает...
Обычно кладу файлы в каталог /etc/openvpn/client/, а потом делаю:
systemctl start openvpn-client@my-client.service
Но тут не получается.
Юнит пытается запустить такую строку:
# /usr/sbin/openvpn --cd /var/lib/openvpn/cache --writepid /run/openvpn-client/my-client.pid --config /etc/openvpn/client/my-client.conf --user openvpn --group openvpn --persist-tun --persist-key --chroot /var/lib/openvpn
2022-09-16 16:52:21 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2022-09-16 16:52:21 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CBC' to --data-ciphers or change --cipher 'AES-256-CBC' to --data-ciphers-fallback 'AES-256-CBC' to silence this warning.
Options error: --ca fails with 'cacert.pem': No such file or directory (errno=2)
Options error: --cert fails with 'A78BAB8FAB91B041.pem': No such file or directory (errno=2)
2022-09-16 16:52:21 WARNING: cannot stat file 'user.pem': No such file or directory (errno=2)
Options error: --key fails with 'user.pem': No such file or directory (errno=2)
Options error: Temporary directory (--tmp-dir) fails with '/var/lib/openvpn//tmp/.private/root': No such file or directory (errno=2)
Options error: Please correct these errors.
Use --help for more information.
Понятно, что ему не даётся и он падает.
# ls -1 /etc/openvpn/client
A78BAB8FAB91B041.pem
cacert.pem
my-client.conf
user.pem