[Solved] OpenVPN ciphers missing

Post here if you are a new Porteus member and you're looking for some help.
Post Reply
fnick
Ronin
Ronin
Posts: 3
Joined: 04 Sep 2012, 18:33
Location: UK

[Solved] OpenVPN ciphers missing

Post#1 by fnick » 04 Sep 2012, 18:42

Porteus-v1.2-x86_64.iso burnt to CD and booted with copy2ram. When setting up an OpenVPN connection with NetworkManager the Cipher box on the VPN/Advanced/Security page is blank with no dropdown entries. I need AES-256-CBC. If I import a config file with the cipher specified, it is ignored. How do I get NetworkManager to accept cipher specifications? Thanks.
Last edited by fnick on 07 Sep 2012, 11:27, edited 1 time in total.

User avatar
fanthom
Site Admin
Site Admin
Posts: 4547
Joined: 28 Dec 2010, 02:42
Distribution: Porteus Kiosk
Location: Poland, currently - Cork, IE
Contact:

Re: OpenVPN ciphers missing

Post#2 by fanthom » 04 Sep 2012, 19:59

hello fnick,

afaik cipher should be set automatically after importing openvpn settings.
do you get any error message when importing them?
did you try to provide all required details manually?

Cheers
Please add [Solved] to your thread title if the solution was found.

fnick
Ronin
Ronin
Posts: 3
Joined: 04 Sep 2012, 18:33
Location: UK

Re: OpenVPN ciphers missing

Post#3 by fnick » 06 Sep 2012, 08:50

Hi fanthom,

The cipher entry in my openvpn config file is ignored on import to NetworkManager with no error messages. If I try to enter the details manually the cipher box is completely blank, with no options when I click the dropdown arrow. It doesn't take manual text input. Mouse over the box gives a popup saying that the default cipher is BF-CBC. I was expecting NetworkManager to be offering a selection of ciphers. Thanks.

User avatar
Hamza
Warlord
Warlord
Posts: 1846
Joined: 28 Dec 2010, 07:41
Distribution: Porteus
Location: France

Re: OpenVPN ciphers missing

Post#4 by Hamza » 06 Sep 2012, 10:19

@fnick,
Please provides more details about this VPN config
NjVFQzY2Rg==

fnick
Ronin
Ronin
Posts: 3
Joined: 04 Sep 2012, 18:33
Location: UK

Re: OpenVPN ciphers missing

Post#5 by fnick » 06 Sep 2012, 12:05

Hamza, the OpenVPN settings I have been using are:

General
__Gateway: xxx.xxx.com
Authentication
__Type: Password with certificates (TLS)
____Username: xxxx
____Password: Blank Saved
__User Certificate: amclient.crt
__CA Certificate: amca.crt
__Private key: amclient.key
__Private key password: Blank
Advanced
__General
____Use custom gateway port: 1149
____Use custom renegotiation interval: 10000
____Use LZO data compression
____Use custom tunnel maximum transmission unit (MTU): 1500
____Use custom UDP fragment size: 1300
____Restrict tunnel UDP max segment size (MSS)
__Security
____Cipher: (This is the one I can't set. I want AES-256-CBC)
____HMAC Authentication: Default
__TLS Authentication
____Subject match: Blank
____Use additional TLS authentication
______Key file: amta.key
______Key direction: 1
__Proxies
____Proxy type: Not required

IPv4 Settings
__Method: Automatic (VPN)

User avatar
fanthom
Site Admin
Site Admin
Posts: 4547
Joined: 28 Dec 2010, 02:42
Distribution: Porteus Kiosk
Location: Poland, currently - Cork, IE
Contact:

Re: OpenVPN ciphers missing

Post#6 by fanthom » 06 Sep 2012, 20:38

@fnick
will try similar setup on my gentoo box or even ubuntu as soon as i can and try to find why the cipher box is empty in Porteus (could be NM compilation issue or missing kernel module or something else)

Cheers

Posted after 6 hours 19 minutes 55 seconds:
this was fairly simple:
Network Manager openvpn plugin requires openvpn package to work :)

please download it from slackware repo:
link
and convert to xzm then move to /porteus/modules and activate.

all ciphers will be available then and importing of openvpn settings should also work.
for next release it will be added to the ISO by default (along with pptp) as seems that VPN protocol is quite popular among Porteus users.

Cheers
Please add [Solved] to your thread title if the solution was found.

Post Reply