OpenVPN on OpenBSD 4.8

I just setup an OpenVPN connection for someone, and I ran into this error:

ksh: ./vars[29]: /etc/openvpn/easy-rsa/2.0/whichopensslcnf: not found

Yeah, weird, turns out you have to edit the vars file, and tell it the full path & name for the openssl.conf that it’s going to use… Oh well more of a tip down the road.

4 thoughts on “OpenVPN on OpenBSD 4.8

  1. Hey, I found your post when running into this same problem, but pointing it at the openssl.cnf just spits out a bunch of errors…. do I need to install some other ossl package or something? Running same ver of obsd. Thanks!

  2. Well, if I don’t modify the vars script at all, I get:
    bash: /usr/local/share/examples/openvpn/easy-rsa/2.0/whichopensslcnf: No such file or directory
    NOTE: If you run ./clean-all, I will be doing a rm -rf on /usr/local/share/examples/openvpn/easy-rsa/2.0/keys

    Since I have no whichopensslcnf file, but I do have an openssl.cnf both in the examples dir, as well as /etc/ssl, if I put in the absolute path of the openssl.cnf file, i.e.
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf I get basically a print out of the vars script but with delcare -x in front of the KEY_CITY, KEY DIR etc variables, then this:

    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 10: HOME: comma nd not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 11: RANDFILE: c ommand not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 12: openssl_con f: command not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 17: oid_section : command not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 18: engines: co mmand not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 37: default_ca: command not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 42: dir: comman d not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 43: certs: comm and not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 44: crl_dir: co mmand not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 45: database: c ommand not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 46: new_certs_d ir: command not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 48: certificate : command not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 49: serial: com mand not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 50: crl: comman d not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 51: private_key : command not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 52: RANDFILE: c ommand not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 54: x509_extens ions: command not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 60: default_day s: command not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 61: 30: command not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 62: default_md: command not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 63: preserve: c ommand not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 68: policy: com mand not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 72: countryName : command not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 73: stateOrProv inceName: command not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 74: organizatio nName: command not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 75: organizatio nalUnitName: command not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 76: commonName: command not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 77: name: comma nd not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 78: emailAddres s: command not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 84: countryName : command not found
    /usr/local/share/examples/openvpn/easy-rsa/2.0/openssl.cnf: line 85: stateOrProv inceName: command not found

    Excuse extremely long paste….

    I have set up OpenVPN on debian several times and never had this problem,
    I’m sure it’s something stupid… but any help would be greatly appreciated.

    • there should be an ‘openssl.conf’ somewhere on the box…

      find / -name ‘openssl.conf’ -print

      …. then its a matter of pathing that file directly in the ‘vars’ file… its too late but I’ll try to look at it tomorrow.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.