"
Hello.
I am writing because I am literally desperated.
I use OPNSense in a school environment. Trying to teach students how to create a VPN with OPNSense. I have used previous years OpenVPN documentation https://docs.opnsense.org/manual/how-tos/sslvpn_client.html without problem. This year is impossible...
No matter how many times, how many virtual machines, how many changes in configuration I always obtain:
Can someone give some tips to debug properly?
I always check the firewall is completely opened.
I inspect Firewalls log files
I inspect OpenVPN log files
And also I capture packets, however I don't see a hello and I don't know how to interpret them properly.
Thanks for your help.
I am writing because I am literally desperated.
I use OPNSense in a school environment. Trying to teach students how to create a VPN with OPNSense. I have used previous years OpenVPN documentation https://docs.opnsense.org/manual/how-tos/sslvpn_client.html without problem. This year is impossible...
No matter how many times, how many virtual machines, how many changes in configuration I always obtain:
Code Select
$ openvpn --config Open_VPN_Server_Basic_juan.ovpn
Tue Nov 29 11:23:00 2022 OpenVPN 2.4.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Mar 22 2022
Tue Nov 29 11:23:00 2022 library versions: OpenSSL 1.1.1f 31 Mar 2020, LZO 2.10
Enter Auth Username: juan
Enter Auth Password: ****
Tue Nov 29 11:23:03 2022 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Tue Nov 29 11:23:03 2022 TCP/UDP: Preserving recently used remote address: [AF_INET]192.168.128.194:1194
Tue Nov 29 11:23:03 2022 UDP link local (bound): [AF_INET][undef]:0
Tue Nov 29 11:23:03 2022 UDP link remote: [AF_INET]192.168.128.194:1194
Tue Nov 29 11:24:03 2022 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Tue Nov 29 11:24:03 2022 TLS Error: TLS handshake failed
Can someone give some tips to debug properly?
I always check the firewall is completely opened.
I inspect Firewalls log files
I inspect OpenVPN log files
And also I capture packets, however I don't see a hello and I don't know how to interpret them properly.
Code Select
1 0.000000000 192.168.128.10 192.168.128.194 OpenVPN 56 MessageType: P_CONTROL_HARD_RESET_CLIENT_V2
2 0.001168662 192.168.128.194 192.168.128.10 OpenVPN 68 MessageType: P_CONTROL_HARD_RESET_SERVER_V2
3 2.171739361 192.168.128.194 192.168.128.10 OpenVPN 56 MessageType: P_CONTROL_HARD_RESET_SERVER_V2
4 2.278314918 192.168.128.10 192.168.128.194 OpenVPN 56 MessageType: P_CONTROL_HARD_RESET_CLIENT_V2
5 2.279198550 192.168.128.194 192.168.128.10 OpenVPN 64 MessageType: P_ACK_V1
6 6.392595426 192.168.128.194 192.168.128.10 OpenVPN 56 MessageType: P_CONTROL_HARD_RESET_SERVER_V2
7 6.835033260 192.168.128.10 192.168.128.194 OpenVPN 56 MessageType: P_CONTROL_HARD_RESET_CLIENT_V2
8 6.835951710 192.168.128.194 192.168.128.10 OpenVPN 64 MessageType: P_ACK_V1
9 14.603195205 192.168.128.194 192.168.128.10 OpenVPN 56 MessageType: P_CONTROL_HARD_RESET_SERVER_V2
10 15.188890256 192.168.128.10 192.168.128.194 OpenVPN 56 MessageType: P_CONTROL_HARD_RESET_CLIENT_V2
11 15.189292814 192.168.128.194 192.168.128.10 OpenVPN 64 MessageType: P_ACK_V1
Thanks for your help.
