TLS Error: TLS key negotiation failed to occur within 60 seconds (check your net

Started by itderzahnfee, December 30, 2020, 06:02:13 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
December 30, 2020, 06:02:13 PM Last Edit: December 30, 2020, 06:27:57 PM by itderzahnfee
Dear all,
I have followed the instructions on how to setup openvpn road warrior setup.
I can't find the issue.

My setup is

public ip --> fritzbox (port forward 1194) --> opnsense WAN --> opnsense LAN --> Switch ....

x.y.z.v   --> 192.168.22.1                      --> 192.168.22.2 -->  192.168.111.x  --> ....


I only get:
Dez 30 6:12:10 : TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Dez 30 6:12:10 : TLS Error: TLS handshake failed
Dez 30 6:12:10 : SIGUSR1[soft,tls-error] received, process restarting
Any ideas?
December 31, 2020, 09:52:33 AM #1
Is this the only service that you have open to the public internet side? If not, are other services working?

Run a packet capture on the WAN interface (Interfaces, Diagnostics, Packet Capture) and confirm that the 1194 UDP packets are reaching OPNsense. Perhaps you set up port forwarding for 1194 TCP?

Also check the Fritzbox for packets flowing both ways: https://osqa-ask.wireshark.org/questions/8541/how-can-i-capture-traffic-with-a-fritz-box

Bart...
January 02, 2021, 11:11:52 AM #2
Ok, I will try that.
At the moment this is the only service exposed to the internet.

Currently I am a bit lost  :o

Could the NAT from OPNsense + the NAT of the Fritzbox impact the scenario?
Print
Go Up Pages1
User actions