Issues with OpenVPN Server Setup

Installing and Using OpenWrt Network and Wireless Configuration
13 
login as: root
root@192.168.62.1's password:


BusyBox v1.25.1 () built-in shell (ash)

     _________
    /        /\      _    ___ ___  ___
   /  LE    /  \    | |  | __|   \| __|
  /    DE  /    \   | |__| _|| |) | _|
 /________/  LE  \  |____|___|___/|___|                      lede-project.org
 \        \   DE /
  \    LE  \    /  -----------------------------------------------------------
   \  DE    \  /    Reboot (17.01.4, r3560-79f57e422d)
    \________\/    -----------------------------------------------------------

root@asdffdsa:~# ls
root@asdffdsa:~# cd /
root@asdffdsa:/# ls
bin              index            overlay          serial?          var
ca.key           index.txt        proc             sys              www
create-certs.sh  init             rom              tls-auth.key?
dev              lib              root             tmp
etc              mnt              sbin             usr
root@asdffdsa:/# sh create-certs.sh
: not founds.sh: line 2:


  # Creating Directory Structure #

------------------------------------------------------------
: not founds.sh: line 5:
: not founds.sh: line 7:
: No such file or directory
create-certs.sh: cd: line 10: can't cd to /etc/openvpn/ssl
: not founds.sh: line 11:
: not founds.sh: line 14:
: not founds.sh: line 15:


  # Customizing openssl.cnf #

------------------------------------------------------------
: not founds.sh: line 18:
: not founds.sh: line 20:
: No such file or directory
: No such file or directory
: No such file or directory
: No such file or directory
: No such file or directory
: No such file or directory
: No such file or directory
: No such file or directory
: not founds.sh: line 29:
: not founds.sh: line 39:
: not founds.sh: line 40:


  # Generating Server PSK and CA, Server, & Client Certs #

------------------------------------------------------------
: not founds.sh: line 43:
Generating a 2048 bit RSA private key
.+++
.......+++
writing new private key to 'ca.key'
-----
unable to find 'distinguished_name' in config
problems making Certificate Request
3070002372:error:0E06D06C:lib(14):func(109):reason(108):NA:0:group=req name=distinguished_name
: not founds.sh: line 45:
/openssl.cnfe -1 of /etc/openvpn/ssl
','rb')l.cnfrror:02001002:lib(2):func(1):reason(2):NA:0:fopen('/etc/openvpn/ssl
3069306052:error:2006D080:lib(32):func(109):reason(128):NA:0:
3069306052:error:0E078072:lib(14):func(120):reason(114):NA:0:
/openssl.cnfuration from /etc/openvpn/ssl
variable lookup failed for ca::default_ca
3069908164:error:0E06D06C:lib(14):func(109):reason(108):NA:0:group=ca name=default_ca
: not founds.sh: line 48:
/openssl.cnfe -1 of /etc/openvpn/ssl
','rb')l.cnfrror:02001002:lib(2):func(1):reason(2):NA:0:fopen('/etc/openvpn/ssl
3069342916:error:2006D080:lib(32):func(109):reason(128):NA:0:
3069342916:error:0E078072:lib(14):func(120):reason(114):NA:0:
unknown option
usage: ca args

 -verbose        - Talk alot while doing things
 -config file    - A config file
 -name arg       - The particular CA definition to use
 -gencrl         - Generate a new CRL
 -crldays days   - Days is when the next CRL is due
 -crlhours hours - Hours is when the next CRL is due
 -startdate YYMMDDHHMMSSZ  - certificate validity notBefore
 -enddate YYMMDDHHMMSSZ    - certificate validity notAfter (overrides -days)
 -days arg       - number of days to certify the certificate for
 -md arg         - md to use, one of md2, md5, sha or sha1
 -policy arg     - The CA 'policy' to support
 -keyfile arg    - private key file
 -keyform arg    - private key file format (PEM or ENGINE)
 -key arg        - key to decode the private key if it is encrypted
 -cert file      - The CA certificate
 -selfsign       - sign a certificate with the key associated with it
 -in file        - The input PEM encoded certificate request(s)
 -out file       - Where to put the output file(s)
 -outdir dir     - Where to put output certificates
 -infiles ....   - The last argument, requests to process
 -spkac file     - File contains DN and signed public key and challenge
 -ss_cert file   - File contains a self signed cert to sign
 -preserveDN     - Don't re-order the DN
 -noemailDN      - Don't add the EMAIL field into certificate' subject
 -batch          - Don't ask questions
 -msie_hack      - msie modifications to handle all those universal strings
 -revoke file    - Revoke a certificate (given in file)
 -subj arg       - Use arg instead of request's subject
 -utf8           - input characters are UTF8 (default ASCII)
 -multivalue-rdn - enable support for multivalued RDNs
 -extensions ..  - Extension section (override value in config file)
 -extfile file   - Configuration file with X509v3 extentions to add
 -crlexts ..     - CRL extension section (override value in config file)
 -engine e       - use engine e, possibly a hardware device.
 -status serial  - Shows certificate status given the serial number
 -updatedb       - Updates db for expired certificates
: not founds.sh: line 51:
: not founds.sh: line 53:
chmod: my-server.key: No such file or directory
chmod: my-client.key: No such file or directory
: not founds.sh: line 55:
: not founds.sh: line 56:


  # May take a while to complete (>~25m on WRT3200ACM) #
------------------------------------------------------------
: not founds.sh: line 59:

  ...Generating Diffie-Hellman Cert...
Generating DH parameters, 2048 bit long safe prime, generator 2
This is going to take a long time
...............^C
root@asdffdsa:/#