FreeNASBob
Patron
- Joined
- Aug 23, 2014
- Messages
- 226
I have been trying to follow several guides posted on these forums, but they all appear to have been written for previous versions of FreeNAS or OpenVPN. For example, following this guide dies at:
After some investigating I discovered that OpenVPN includes an easyrsa script that you call with various parameters, but that fails as well:
This guide, appears designed to set up OpenVPN as a client so there's no info about setting up server keys, etc. Even the OpenVPN documentation says:
But, when you try that you get:
The 'How to use this file' section states:
I was going to edit the vars file to point to the OpenSSL config located at /etc/ssl in the OpenVPN jail, but the documentation states:
So, there's a step or 10 that are now missing from every source I can find.
Has anybody else figured it out?
Thanks.
Code:
[root@OpenVPN /usr/local/share/easy-rsa]# source ./vars You appear to be sourcing an Easy-RSA 'vars' file. This is no longer necessary and is disallowed. See the section called 'How to use this file' near the top comments for more details.
After some investigating I discovered that OpenVPN includes an easyrsa script that you call with various parameters, but that fails as well:
Code:
[root@OpenVPN /usr/local/share/easy-rsa]# easyrsa build-ca Note: using Easy-RSA configuration from: /usr/local/share/easy-rsa/vars Easy-RSA error: The OpenSSL config file cannot be found. Expected location: /usr/local/share/easy-rsa/openssl-1.0.cnf
This guide, appears designed to set up OpenVPN as a client so there's no info about setting up server keys, etc. Even the OpenVPN documentation says:
Code:
On Linux/BSD/Unix: . ./vars ./clean-all ./build-ca
But, when you try that you get:
Code:
[root@OpenVPN /usr/local/share/easy-rsa]# . ./vars You appear to be sourcing an Easy-RSA 'vars' file. This is no longer necessary and is disallowed. See the section called 'How to use this file' near the top comments for more details.
The 'How to use this file' section states:
Code:
# It is not necessary to use this config file unless you wish to change # operational defaults. These defaults should be fine for many uses without the # need to copy and edit the 'vars' file.
I was going to edit the vars file to point to the OpenSSL config located at /etc/ssl in the OpenVPN jail, but the documentation states:
Code:
# Normally this file is auto-detected from a file named openssl-1.0.cnf from the # EASYRSA_PKI or EASYRSA dir (in that order.) NOTE that this file is Easy-RSA # specific and you cannot just use a standard config file, so this is an # advanced feature.
So, there's a step or 10 that are now missing from every source I can find.
Has anybody else figured it out?
Thanks.
Last edited: