OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of camtah »
  • Show Posts »
  • Messages
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Messages - camtah

Pages: [1]
1
Virtual private networks / Re: Client can't connect to new OpenVPN Server
« on: April 02, 2022, 06:08:03 pm »
Quote from: camtah on March 27, 2022, 02:29:02 pm
I am also having the same issue not connecting. I haven't used my setup in a while, but it has worked in the past. I scrubbed the config and rebuilt everything and cannot connect. I use wireguard as a backup and it works fine. FW settings for Openvpn where not changed , but  I deleted and reconfigured the rules again per the document..
 
....

UPDATE:
I found my issue. It appears that my Client Export had a "rouge" end point connection IP address listed in the config. While I did not change it, I noticed that the IP address listed was registered to a "far east" country. Up until now it was my ISP endpoint and I did not change it as far as I know. I did re-create the Client Export with the correct address.

I know that somewhere along the line, I put in the correct  IP address in the client file export, but it is what it is.

So I fixed my problem, but have no idea where the incorrect 24.14.x.x address came from. I can't even say it was an bad cut/paste or miss-type on my part as I wouldn't recognize the address anyway.

So, my config with OpenVpn is resolved for now...

2
Virtual private networks / Re: Client can't connect to new OpenVPN Server
« on: March 27, 2022, 02:29:02 pm »
I am also having the same issue not connecting. I haven't used my setup in a while, but it has worked in the past. I scrubbed the config and rebuilt everything and cannot connect. I use wireguard as a backup and it works fine. FW settings for Openvpn where not changed , but  I deleted and reconfigured the rules again per the document..

I wonder if it is TLS 1.3 related.

Windows and Android client both exhibit the same behavior.

Here is a small snippet of my log:
...
2022-03-26 14:36:57 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1549,tun-mtu 1500,proto UDPv4,keydir 1,cipher AES-256-GCM,auth [null-digest],keysize 256,tls-auth,key-method 2,tls-client'
2022-03-26 14:36:57 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1549,tun-mtu 1500,proto UDPv4,keydir 0,cipher AES-256-GCM,auth [null-digest],keysize 256,tls-auth,key-method 2,tls-server'
2022-03-26 14:36:57 TCP/UDP: Preserving recently used remote address: [AF_INET]24.14.150.251:1194
2022-03-26 14:36:57 Socket Buffers: R=[229376->229376] S=[229376->229376]
2022-03-26 14:36:57 MANAGEMENT: CMD 'needok 'PROTECTFD' ok'
2022-03-26 14:36:57 UDP link local (bound): [AF_INET][undef]:0
2022-03-26 14:36:57 UDP link remote: [AF_INET]24.14.150.251:1194
2022-03-26 14:36:57 MANAGEMENT: >STATE:1648323417,WAIT,,,,,,
2022-03-26 14:37:57 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2022-03-26 14:37:57 TLS Error: TLS handshake failed
...

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2