How To Create Ovpn Config For Sun

Hi Folks

SO .... where to begin ?

OpenVPN refuses to connect with an old hardware style RUT955 (Firmware R_00.06.07.7) using the GUI to configure the VPN.

I am using a server generated OVPN file (IPFIRE release 155 firewall) and a P12 certificate for which I have the correct password

The GUI accepts the OVPN, P12 cert and password.
I then [save] the configuration
The GUI seems not to read the OVPN file as I am left with:

So, to prove my configuration is valid, I uploaded my .ovpn file and my P12 certificate to
/etc/openvpn/

from SSH I then ran openvpn --client --config {myconfig.ovpn}

It prompted me for the password and I put in the correct one.

The first thing I noticed was that when it processes the REMOTE line
(remote {hostname} 1194} It returns an IPV6 address - my firewall / ISP
only support IPV4 which causes a failure:

Sun May 2 08:31:07 2021 OpenVPN 2.4.5 mips-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD]

Sun May 2 08:31:07 2021 library versions: OpenSSL 1.1.1k 25 Mar 2021, LZO 2.10

Enter Private Key Password:

Sun May 2 08:31:14 2021 TCP/UDP: Preserving recently used remote address: [AF_INET6] MY IP V6 :1194

Sun May 2 08:31:14 2021 Socket Buffers: R=[8388608->8388608] S=[8388608->8388608]

Sun May 2 08:31:14 2021 UDP link local: (not bound)

Sun May 2 08:31:14 2021 UDP link remote: [AF_INET6] IP:OBFUSCATED ::1194

Sun May 2 08:31:14 2021 write UDP: Permission denied (code=13)

Sun May 2 08:31:16 2021 write UDP: Permission denied (code=13)

Sun May 2 08:31:20 2021 write UDP: Permission denied (code=13)

Sun May 2 08:31:29 2021 write UDP: Permission denied (code=13)

Sun May 2 08:31:46 2021 write UDP: Permission denied (code=13)

Sun May 2 08:31:49 2021 event_wait : Interrupted system call (code=4)

Sun May 2 08:31:49 2021 SIGINT[hard,] received, process exiting

I replace the remote line with my hard coded IPV4 address and the VPN connects immediately,
first time - no issues - and I can browse content on the VPN protected networks.
But of course the GUI still shows "not available".

I can confirm that IPV6 is DISABLED in ALL the menu options I know about !

I cannot hard code the OVPN file V4 address as our ISP insists on DHCP so we have to use
Dynamic DNS.

For compIeteness, I edited the OVPN on the windows PC to use the hard coded IP.
I then deleted all the VPN config from the GUI.

This didn't fix the issue,but to my surprise, the P12 Password field self populated - I noted
in an earlier forum post that the .PASS[word] file created by the GUI was not deleted
when the VPN connection was removed. Housekeeping fix needed!

Finally, I created the VPN profile manually , using the IPV4 address

This populated the GUI correctly, but the VPN didn't start at all

I checked the mobile connection page - USE ONLY IPV4 is ticked !

So -

a few issues here guys

- how can I help you solve them please ?

my config file as generated by the firewall:

#OpenVPN Client conf

tls-client

client

nobind

dev tun

proto udp

tun-mtu 1345

remote MY_DYNAMIC_FQDN 1194

pkcs12 Teltonika.p12

cipher AES-256-CBC

auth SHA512

verb 3

remote-cert-tls server

verify-x509-name MY_DYNAMIC_FQDN name