Help i've lost my networking skills? TLS error...
Looking for some quick help. Been out of networking for a long time. I get a TLS error below when trying to connect to an OpenVPN server.
VPN server LAN IP:192.168.0.165 (port 1194 opened)
VPN Virtual IP:10.30.40.0
Router: DIR-655 (port UDP 1194) forwarded to 192.168.0.165
I exported the configuration and certificate file from my server and am using TunnelBlick on MAC to connect.
2012-08-04 22:49:06 UDPv4 link local (bound): [undef]:1194
2012-08-04 22:49:06 UDPv4 link remote: 220.127.116.11:1194
2012-08-04 22:49:06 TLS Error: client->client or server->server connection attempted from 18.104.22.168:1194
Any idea? I'm going nucking futs with this stuff!
Thanks to any and all who even view this!
So you're outside your LAN and trying to connect back I'd presume. Are you sure you're trying the correct IP address or URL for your DIR655? Also, are you sure that the ports needed are open on all firewalls (your computer as well as your router)? It sounds like something changed at some point and then it stopped working - any idea what was changed? (new computer, new router, etc)?
Yes connecting from external network. No major changes. I am using a a Synology NAS as my Open VPN server. Port is open on both the NAS and the router. I did make a typo so now I get the following:
TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2012-08-04 23:30:45 TLS Error: TLS handshake failed
2012-08-04 23:30:45 SIGUSR1[soft,tls-error] received, process restarting
So this was working correctly before, and now it's not even though you have not changed any hardware or software or upgraded any hardware or software? Who's your ISP? Maybe they started filtering some TCP/UDP ports.
Never had it working at this location. I've setup other VPN's along while ago. Thought I knew what to do but must be forgetting something.
I'm not an OpenVPN guy so I may not be able provide much more assistance. I am curious about the vital 10. address you mentioned. Are you sure that's a correct way as opposed to having that IP be within your LAN IP scope (192.168.0.x) ?
|reply to jranaudo |
I have run into similar error messages when either the VPN server or the remote client had comp-lzo but not both locations.
Verify that compression is either turned on in both the VPN Server and Client PC or commented out/removed from the config files at both ends and with luck that may fix things for you.