Thanks for this amazing open source project.
Before that, I used to have it installed on a Virtual Machine running in my local network and everything was fine.
I am having an issue that looks similar to this one:
Since installing on the droplet, my devices have always been sown “offline”.
On the droplet, I however used to be able to push updates to them, but not any more.
In case it matters, I have Raspberry Pi Zero W connected via WIFI running balenaOS 2.32.0+rev1.
Also I cannot SSH into them any more, so I can’t take any logs from that side.
Following the mentioned thread, I pulled the logs from the VPN, using
./scripts/compose exec vpn journalctl -fn100, and they revealed a few errors:
vpn-logs.log (11.9 KB)
I’ll quote one of them here to make this thread easier to find, but please take a look at the full log above.
WARNING: POTENTIALLY DANGEROUS OPTION --verify-client-cert none|optional (or --client-cert-not-required) may accept clients which do not present a certificate WARNING: file 'server.key' is group or others accessible OpenVPN 2.4.0 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Oct 14 2018 library versions: OpenSSL 1.0.2r 26 Feb 2019, LZO 2.08 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts OpenSSL: error:0906D06C:PEM routines:PEM_read_bio:no start line Cannot load DH parameters from dh.pem Exiting due to fatal error
I’m an IT guy, but I don’t know much about Docker, and I certainly have no idea how to go about “fixing” this issue.
Thanks in advance for your help. I can provide any other required logs or info, just ask.