Container hangs on DH params generation

[minicooper666]

Hello! Trying to spin up VPN for office network:

[user@localhost ~]$ docker logs openvpn -f

2023-11-17 14:22:50 - Setting up networking...

iptables: masquerade from 10.50.50.0/24 to everywhere via eth0
iptables: Rule missing. Creating rule...

2023-11-17 14:22:50 - Setting up PKI...

easyrsa: creating server certs
Using configuration from /etc/openvpn/pki/58b0a573/temp.c36db8ef
......+.+...+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++*..+.........+......+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++*...+..+.+...........+...+.+...........+...............+.+..+............+......+...+....+..+......+....+...........+...............+..........+...+.....+..........+.....+.+...+...+..+..........+..+.....................+....+.....+................+...+..+....+..............+.+.....+..........+...+...+....................+............+.+.........+......+....................+......+....+......+.....+...+...+..........+.........+.........+.....+......+...+..............................+...+.......+...+..+.+....................+....+........+....+.....+.+...+..+.......+..+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
....+......+...+...+..........+..+...+.......+...+...+..+.........+....+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++*.+...+..+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++*.....+.......+...+........+.........+...............+..........+...........+......+.........+....+..+.+..+.+...........+.............+...+...+.....+.......+..+............+..........+...+.....+...........................+...............+....+.........+.....+......+....+......+.....+......+......+...+....+........+...+.+...+...............+..+...+.......+.....+......+..........+...............+...+.....+.......+...+..+.........+.............+...+...+..+...+..........+..+.......+.....+..........+...........+.......+..+......+.......+..+.......+.....+..........+...+..+......+.......+............+........+...+...+.....................+....+......+.........+.........+..+.+..+...+....+..............+..........+......+........+......+.+...+......+..+.........+..................+.+......+...........+.........+................+.......................+....+......+..+.........+...+................+.....+............+....+...+..+.........+....+..+......+.......+.....+......+.......+..+.+..+....+.......................+............+......+...+.+......+...+........................+..................+........+.+..............+......+.+...+.....+......+...+............+...................+.........+........+....+..................+..+.........+.+..............+.+...+............+......+.....+..........+.....+....+...+..+...+......+.......+...+.....+....+...+..................+......+...........+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
-----

Generating DH parameters, 4096 bit long safe prime

And it doesn't complete for hours... Restart/recreate even with REGENERATE_CERTS env gives nothing.
My env file:

`OVPN_SERVER_CN="connect.[REDACTED].tech"`
LDAP_URI="ldap://192.168.0.127"
LDAP_BASE_DN="cn=users,dc=[REDACTED]"
LDAP_BIND_USER_DN="cn=ldapsearch,cn=users,dc=[REDACTED]"
LDAP_BIND_USER_PASS=[REDACTED]
LDAP_FILTER="(memberof=CN=IT,CN=Users,DC=[REDACTED])"
LDAP_LOGIN_ATTRIBUTE="sAMAccountName"
OVPN_PORT=10086
KEY_LENGTH=4096
FAIL2BAN_ENABLED=TRUE
FAIL2BAN_MAXRETRIES=5

[wheelybird]

Hi. I can't replicate this. One possibility is that your computer hasn't got enough entropy. You could install rngd and see if that helps: https://www.baeldung.com/linux/entropy-pool-rngd
If you are using a slow computer then generating the DH parameters will take a long time, though not hours.