Bonjour,
J’ai tenté de faire une installation via le script de Mips :
Mais l’accès à distance via les DNS Jeedom ne fonctionne pas. Bien que l’installation ait été faite jeudi dernier, et le lien avec le market dans la foulée.
Voici ce qui a été fait jusqu’à présent:
J’ai lancé le script d’installation avec le mode privileged désactivé :
OpenVPN installé.
Pas de soucis apparent sur les logs du package:
LOG package
0000|+ echo '*******************Begin of package installation******************'
0001|*******************Begin of package installation******************
0002|+ touch /tmp/jeedom_install_in_progress_openvpn
0003|+ echo 1
0004|+ echo 2
0005|+ sudo killall apt apt-get unattended-upgr
0006|apt: no process found
0007|apt-get: no process found
0008|+ sudo rm /var/lib/apt/lists/lock
0009|+ sudo rm /var/cache/apt/archives/lock
0010|+ sudo rm /var/lib/dpkg/lock /var/lib/dpkg/lock-frontend
0011|+ sudo sudo dpkg --configure -a --force-confdef
0012|+ sudo apt update
0013|WARNING: apt does not have a stable CLI interface. Use with caution in scripts.
0014|Hit:1 http://deb.debian.org/debian bullseye InRelease
0015|Get:2 http://deb.debian.org/debian bullseye-updates InRelease [44.1 kB]
0016|Hit:3 http://security.debian.org bullseye-security InRelease
0017|Hit:4 https://deb.nodesource.com/node_20.x nodistro InRelease
0018|Fetched 44.1 kB in 0s (114 kB/s)
0019|Reading package lists...
0020|Building dependency tree...
0021|Reading state information...
0022|All packages are up to date.
0023|+ echo 3
0024|+ sudo apt install -o Dpkg::Options::=--force-confdef -y openvpn
0025|WARNING: apt does not have a stable CLI interface. Use with caution in scripts.
0026|Reading package lists...
0027|Building dependency tree...
0028|Reading state information...
0029|The following additional packages will be installed:
0030|easy-rsa libccid liblzo2-2 libpkcs11-helper1 opensc opensc-pkcs11 pcscd
0031|Suggested packages:
0032|pcmciautils resolvconf openvpn-systemd-resolved
0033|The following NEW packages will be installed:
0034|easy-rsa libccid liblzo2-2 libpkcs11-helper1 opensc opensc-pkcs11 openvpn
0035|pcscd
0036|0 upgraded, 8 newly installed, 0 to remove and 0 not upgraded.
0037|Need to get 2434 kB of archives.
0038|After this operation, 7417 kB of additional disk space will be used.
0039|Get:1 http://deb.debian.org/debian bullseye/main amd64 libccid amd64 1.4.34-1 [337 kB]
0040|Get:2 http://security.debian.org bullseye-security/main amd64 opensc-pkcs11 amd64 0.21.0-1+deb11u1 [881 kB]
0041|Get:3 http://deb.debian.org/debian bullseye/main amd64 pcscd amd64 1.9.1-1 [98.1 kB]
0042|Get:4 http://deb.debian.org/debian bullseye/main amd64 easy-rsa all 3.0.8-1 [45.2 kB]
0043|Get:5 http://deb.debian.org/debian bullseye/main amd64 liblzo2-2 amd64 2.10-2 [56.9 kB]
0044|Get:6 http://deb.debian.org/debian bullseye/main amd64 libpkcs11-helper1 amd64 1.27-1 [47.5 kB]
0045|Get:7 http://security.debian.org bullseye-security/main amd64 opensc amd64 0.21.0-1+deb11u1 [368 kB]
0046|Get:8 http://security.debian.org bullseye-security/main amd64 openvpn amd64 2.5.1-3+deb11u1 [600 kB]
0047|debconf: unable to initialize frontend: Dialog
0048|debconf: (Dialog frontend will not work on a dumb terminal, an emacs shell buffer, or without a controlling terminal.)
0049|debconf: falling back to frontend: Readline
0050|debconf: unable to initialize frontend: Readline
0051|debconf: (This frontend requires a controlling tty.)
0052|debconf: falling back to frontend: Teletype
0053|dpkg-preconfigure: unable to re-open stdin:
0054|Fetched 2434 kB in 0s (39.9 MB/s)
0055|Selecting previously unselected package libccid.
0056|(Reading database ...
(Reading database ... 5%
(Reading database ... 10%
(Reading database ... 15%
(Reading database ... 20%
(Reading database ... 25%
(Reading database ... 30%
(Reading database ... 35%
(Reading database ... 40%
(Reading database ... 45%
(Reading database ... 50%
(Reading database ... 55%
(Reading database ... 60%
(Reading database ... 65%
(Reading database ... 70%
(Reading database ... 75%
(Reading database ... 80%
(Reading database ... 85%
(Reading database ... 90%
(Reading database ... 95%
(Reading database ... 100%
(Reading database ... 57756 files and directories currently installed.)
0057|Preparing to unpack .../0-libccid_1.4.34-1_amd64.deb ...
0058|Unpacking libccid (1.4.34-1) ...
0059|Selecting previously unselected package pcscd.
0060|Preparing to unpack .../1-pcscd_1.9.1-1_amd64.deb ...
0061|Unpacking pcscd (1.9.1-1) ...
0062|Selecting previously unselected package easy-rsa.
0063|Preparing to unpack .../2-easy-rsa_3.0.8-1_all.deb ...
0064|Unpacking easy-rsa (3.0.8-1) ...
0065|Selecting previously unselected package liblzo2-2:amd64.
0066|Preparing to unpack .../3-liblzo2-2_2.10-2_amd64.deb ...
0067|Unpacking liblzo2-2:amd64 (2.10-2) ...
0068|Selecting previously unselected package libpkcs11-helper1:amd64.
0069|Preparing to unpack .../4-libpkcs11-helper1_1.27-1_amd64.deb ...
0070|Unpacking libpkcs11-helper1:amd64 (1.27-1) ...
0071|Selecting previously unselected package opensc-pkcs11:amd64.
0072|Preparing to unpack .../5-opensc-pkcs11_0.21.0-1+deb11u1_amd64.deb ...
0073|Unpacking opensc-pkcs11:amd64 (0.21.0-1+deb11u1) ...
0074|Selecting previously unselected package opensc.
0075|Preparing to unpack .../6-opensc_0.21.0-1+deb11u1_amd64.deb ...
0076|Unpacking opensc (0.21.0-1+deb11u1) ...
0077|Selecting previously unselected package openvpn.
0078|Preparing to unpack .../7-openvpn_2.5.1-3+deb11u1_amd64.deb ...
0079|Unpacking openvpn (2.5.1-3+deb11u1) ...
0080|Setting up libccid (1.4.34-1) ...
0081|Setting up pcscd (1.9.1-1) ...
0082|Created symlink /etc/systemd/system/sockets.target.wants/pcscd.socket -> /lib/systemd/system/pcscd.socket.
0083|pcscd.service is a disabled or a static unit, not starting it.
0084|Setting up liblzo2-2:amd64 (2.10-2) ...
0085|Setting up libpkcs11-helper1:amd64 (1.27-1) ...
0086|Setting up opensc-pkcs11:amd64 (0.21.0-1+deb11u1) ...
0087|Setting up easy-rsa (3.0.8-1) ...
0088|Setting up openvpn (2.5.1-3+deb11u1) ...
0089|debconf: unable to initialize frontend: Dialog
0090|debconf: (Dialog frontend will not work on a dumb terminal, an emacs shell buffer, or without a controlling terminal.)
0091|debconf: falling back to frontend: Readline
0092|Created symlink /etc/systemd/system/multi-user.target.wants/openvpn.service -> /lib/systemd/system/openvpn.service.
0093|Setting up opensc (0.21.0-1+deb11u1) ...
0094|Processing triggers for man-db (2.9.4-2) ...
0095|Processing triggers for mailcap (3.69) ...
0096|Processing triggers for libc-bin (2.31-13+deb11u13) ...
0097|+ echo 4
0098|+ php /var/www/html/core/class/../php/jeecli.php plugin dependancy_end openvpn
0099|+ echo 5
0100|+ rm /tmp/jeedom_install_in_progress_openvpn
0101|+ echo '*******************End of package installation******************'
0102|*******************End of package installation******************
Par contre, les logs DNS ne disent pas pareil, et indique tout le temps la même chose à chaque lancement :
LOG DNS
0000|2025-06-16 07:41:28 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
0001|2025-06-16 07:41:28 --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
0002|2025-06-16 07:41:28 WARNING: file '/tmp/jeedom/openvpn/openvpn_auth_T3tu2wKvZOJ2i4G0VXyui046Wesjg3.conf' is group or others accessible
0003|2025-06-16 07:41:28 OpenVPN 2.5.1 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Mar 1 2025
0004|2025-06-16 07:41:28 library versions: OpenSSL 1.1.1w 11 Sep 2023, LZO 2.10
0005|2025-06-16 07:41:28 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
0006|2025-06-16 07:41:28 TCP/UDP: Preserving recently used remote address: [AF_INET]163.172.187.40:1198
0007|2025-06-16 07:41:28 UDP link local: (not bound)
0008|2025-06-16 07:41:28 UDP link remote: [AF_INET]163.172.187.40:1198
0009|2025-06-16 07:41:28 VERIFY OK: depth=1, C=FR, ST=IDF, L=Paris, O=jeedom.com, OU=jeedom.com, CN=jeedom.com CA, name=jeedom, emailAddress=postmaster@jeedom.com
0010|2025-06-16 07:41:28 VERIFY OK: depth=0, C=FR, ST=IDF, L=Paris, O=jeedom.com, OU=jeedom.com, CN=server, name=jeedom, emailAddress=postmaster@jeedom.com
0011|2025-06-16 07:41:28 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1542', remote='link-mtu 1342'
0012|2025-06-16 07:41:28 WARNING: 'tun-mtu' is used inconsistently, local='tun-mtu 1500', remote='tun-mtu 1300'
0013|2025-06-16 07:41:28 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, 1024 bit RSA
0014|2025-06-16 07:41:28 [server] Peer Connection Initiated with [AF_INET]163.172.187.40:1198
0015|2025-06-16 07:41:28 Data Channel: using negotiated cipher 'AES-256-GCM'
0016|2025-06-16 07:41:28 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
0017|2025-06-16 07:41:28 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
0018|2025-06-16 07:41:28 ERROR: Cannot open TUN/TAP dev /dev/net/tun: No such file or directory (errno=2)
0019|2025-06-16 07:41:28 Exiting due to fatal error
Ce qui fait que quand je tente d’accéder depuis l’extérieur, j’ai l’erreur suivante :
Que puis-je faire pour finir correctement cette installation ?
