OPNsense Forum

Archive => 20.7 Legacy Series => Topic started by: arsca on October 23, 2020, 05:13:00 pm

Title: 20.7.4: OpenVPN: Cannot load certificate file /var/etc/openvpn/server1.cert
Post by: arsca on October 23, 2020, 05:13:00 pm

Hi,

Today after the update [20.7.4] the openvpn service didn't start up.  It can't be started due to the following:

Code: [Select]

2020-10-23T14:49:55   openvpn[13440]   Exiting due to fatal error2020-10-23T14:49:55   openvpn[13440]   Cannot load certificate file /var/etc/openvpn/server1.cert
2020-10-23T14:49:55   openvpn[13440]   OpenSSL: error:140AD009:SSL routines:SSL_CTX_use_certificate_file:PEM lib
2020-10-23T14:49:55   openvpn[13440]   OpenSSL: error:0908F066:PEM routines:get_header_and_data:bad end line
2020-10-23T14:49:55   openvpn[13440]   Diffie-Hellman initialized with 4096 bit key
2020-10-23T14:49:55   openvpn[13440]   NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2020-10-23T14:49:55   openvpn[13440]   WARNING: using --duplicate-cn and --client-config-dir together is probably not what you want
2020-10-23T14:49:55   openvpn[13440]   MANAGEMENT: unix domain socket listening on /var/etc/openvpn/server1.sock
2020-10-23T14:49:55   openvpn[69378]   library versions: OpenSSL 1.1.1h 22 Sep 2020, LZO 2.10
2020-10-23T14:49:55   openvpn[69378]   OpenVPN 2.4.9 amd64-portbld-freebsd12.1 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Jul 28 2020

The server1.cert is present in the path.


UPDATE: I noticed that during the update process the server1.cert file got corrupted. Trying to generate a new one .