[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: OpenVPN Service
From: |
Raghav Gururajan |
Subject: |
Re: OpenVPN Service |
Date: |
Wed, 18 Nov 2020 14:54:35 -0500 |
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Icedove/78.4.0 |
Hello Julien!
I'm surprised by this one: you already set ca to something different. Can you
share the generated openvpn.conf?
OOPS! There was a mistake in config.scm. This error is gone now.
Now the openvpn.conf is https://paste.debian.net/1173026/
and error is https://paste.debian.net/1173027/
Ok, looking at the service definition, this is not so surprising: it expects a
file in the cert and key fields, and uses the defaults here. I'm surprised it
doesn't complain about client.crt. I pushed a small update to the service.
After you run guix pull, you should be able to specify (cert 'disabled) and
(key 'disabled).
Thanks a lot! I will try it.
This is only a warning, but you don't want your password to be world readable:
chown it to openvpn's user, and chmod it to 600.
Cool!
Regards,
RG.
OpenPGP_0x5F5816647F8BE551.asc
Description: application/pgp-keys
OpenPGP_signature
Description: OpenPGP digital signature