Author Topic: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your net (Read 4144 times)

itderzahnfee · « **on:** December 30, 2020, 06:02:13 pm »

Dear all,
I have followed the instructions on how to setup openvpn road warrior setup.
I can't find the issue.

My setup is

public ip --> fritzbox (port forward 1194) --> opnsense WAN --> opnsense LAN --> Switch ....

x.y.z.v --> 192.168.22.1 --> 192.168.22.2 --> 192.168.111.x --> ....

I only get:
Dez 30 6:12:10 : TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Dez 30 6:12:10 : TLS Error: TLS handshake failed
Dez 30 6:12:10 : SIGUSR1[soft,tls-error] received, process restarting
Any ideas?

bartjsmit · « **Reply #1 on:** December 31, 2020, 09:52:33 am »

Is this the only service that you have open to the public internet side? If not, are other services working?

Run a packet capture on the WAN interface (Interfaces, Diagnostics, Packet Capture) and confirm that the 1194 UDP packets are reaching OPNsense. Perhaps you set up port forwarding for 1194 TCP?

Also check the Fritzbox for packets flowing both ways: https://osqa-ask.wireshark.org/questions/8541/how-can-i-capture-traffic-with-a-fritz-box

Bart...

itderzahnfee · « **Reply #2 on:** January 02, 2021, 11:11:52 am »

Ok, I will try that.
At the moment this is the only service exposed to the internet.

Currently I am a bit lost

Could the NAT from OPNsense + the NAT of the Fritzbox impact the scenario?

Author Topic: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your net (Read 4144 times)

itderzahnfee

TLS Error: TLS key negotiation failed to occur within 60 seconds (check your net

bartjsmit

Re: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your net

itderzahnfee

Re: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your net