As the Title says, I cant get Server 2 to work using donor files from Server 1.
For server 1, I followed the digital ocean guide for ubuntu 20.04, created my own CA, signed the certs, moved them and got OpenVPN successfulkl working on Server 1.
I moved the configs and certs to server 2, thinking it would all just work, but it doesnt.
For a bunch of reasons, mainly becasue Server 2 is way more secure and always running, I do not want to wipe Server 2 and start over, nor do i want to starting moving files between CA and .
Server 2 has different user names and groups, I suspect this may be the problem, other than that, shouldnt doing this just work? I mean, i have the config, I have the certs. The network settings are good.
Sounds like a permissions issue. Check the file ownership and make sure OpenVPN can access them. Also, look for any hardcoded paths in the config files. Check the logs for errors and make sure there’s no firewall or SELinux blocking the service.
Thanks, it seems like it is a permissions issue! I’ll have to test when i get home.
So, I spent the afternoon creating a new user, changing permissions, and making every folder match the folders on the working OpenVPN, and it wouldn’t work.
I have narrowed it down to two possible things, or both.
When I clone the working server using the same UUID of the VDI and the same mac address of the NIC, then all is good.
If I try to use a different UUID and mac, then it doesnt work – on an exact clone.
I think the keys take UUID and or Mac into account when signing.
I will narrow that down further.
In retrospect, I should have just moved the CA to the other host, and setup the new server using that. it just seemed like that would be a lot more work at the time. Now, i realize I am going to have to do all of that, after doing all of this.