I have a small mystery regarding OpenVPN - I hope some guru out there can help. Here's the situation:
I want to establish a VPN for use by a single client. The server runs OpenVPN 1.6; the client is Ubuntu 9.04. I am able to establish a VPN connection using either a static key or using TLS, as long as I start OpenVPN (on the client) in a terminal window.
The network manager cannot create an OpenVPN connection using a static key - this is a known bug. However, it ought to be able to create a TLS-session. What happens is: the server notes "Peer Connection Initiated", and seems happy. On the client, the network manager reports the following error in syslog:
VPN connection 'connection-name' (IP Config Get) timeout exceeded
I am at a loss as to what the problem is and how to fix it. Here is the configuration that works when I start OpenVPN from the command line:
dev tun
remote 123.456.78.90
ifconfig 192.168.2.1 192.168.2.254
up ./route.up
tls-client
ca ca.crt
cert client.cert
key client.key
port 5000
verb 3
The contents of route.up are
route add -net 192.168.2.0 netmask 255.255.255.0 gw $5
Again, this all works fine when started from the command line. The problem comes when I try to replicate these settings in the network-manager. I have been unable to find any useful information about the error message regarding "IP Config Get".
Can anyone give me an idea what the problem could be?