Porteus

Porteus-v1.2-x86_64.iso burnt to CD and booted with copy2ram. When setting up an OpenVPN connection with NetworkManager the Cipher box on the VPN/Advanced/Security page is blank with no dropdown entries. I need AES-256-CBC. If I import a config file with the cipher specified, it is ignored. How do I get NetworkManager to accept cipher specifications? Thanks.

hello fnick,

afaik cipher should be set automatically after importing openvpn settings.
do you get any error message when importing them?
did you try to provide all required details manually?

Cheers

Hi fanthom,

The cipher entry in my openvpn config file is ignored on import to NetworkManager with no error messages. If I try to enter the details manually the cipher box is completely blank, with no options when I click the dropdown arrow. It doesn't take manual text input. Mouse over the box gives a popup saying that the default cipher is BF-CBC. I was expecting NetworkManager to be offering a selection of ciphers. Thanks.

@fnick,
Please provides more details about this VPN config

Hamza, the OpenVPN settings I have been using are:

General
__Gateway: xxx.xxx.com
Authentication
__Type: Password with certificates (TLS)
____Username: xxxx
____Password: Blank Saved
__User Certificate: amclient.crt
__CA Certificate: amca.crt
__Private key: amclient.key
__Private key password: Blank
Advanced
__General
____Use custom gateway port: 1149
____Use custom renegotiation interval: 10000
____Use LZO data compression
____Use custom tunnel maximum transmission unit (MTU): 1500
____Use custom UDP fragment size: 1300
____Restrict tunnel UDP max segment size (MSS)
__Security
____Cipher: (This is the one I can't set. I want AES-256-CBC)
____HMAC Authentication: Default
__TLS Authentication
____Subject match: Blank
____Use additional TLS authentication
______Key file: amta.key
______Key direction: 1
__Proxies
____Proxy type: Not required

IPv4 Settings
__Method: Automatic (VPN)

@fnick
will try similar setup on my gentoo box or even ubuntu as soon as i can and try to find why the cipher box is empty in Porteus (could be NM compilation issue or missing kernel module or something else)

Cheers

Posted after 6 hours 19 minutes 55 seconds:
this was fairly simple:
Network Manager openvpn plugin requires openvpn package to work

please download it from slackware repo:
link
and convert to xzm then move to /porteus/modules and activate.

all ciphers will be available then and importing of openvpn settings should also work.
for next release it will be added to the ISO by default (along with pptp) as seems that VPN protocol is quite popular among Porteus users.

Cheers