EFW Support

Support => VPN Support => Topic started by: jbosman on Tuesday 26 July 2011, 07:08:30 pm


Title: OpenVPN Connection failed
Post by: jbosman on Tuesday 26 July 2011, 07:08:30 pm
Hello,

I hope someone is able to help me with this problem we have.

We try to connect to our VPN what always worked, however recently it stopped working. Dont know why because as for my knowledge nothing has changed. This is the connection error we get:

Code:
Tue Jul 26 10:47:57 2011 OpenVPN 2.1.1 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Dec 11 2009
Tue Jul 26 10:48:09 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Tue Jul 26 10:48:10 2011 LZO compression initialized
Tue Jul 26 10:48:10 2011 Control Channel MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
Tue Jul 26 10:48:10 2011 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Tue Jul 26 10:48:10 2011 Local Options hash (VER=V4): 'd79ca330'
Tue Jul 26 10:48:10 2011 Expected Remote Options hash (VER=V4): 'f7df56b8'
Tue Jul 26 10:48:10 2011 Socket Buffers: R=[8192->8192] S=[8192->8192]
Tue Jul 26 10:48:10 2011 UDPv4 link local: [undef]
Tue Jul 26 10:48:10 2011 UDPv4 link remote: 192.168.*.*:1194
Tue Jul 26 10:49:10 2011 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Tue Jul 26 10:49:10 2011 TLS Error: TLS handshake failed
Tue Jul 26 10:49:10 2011 TCP/UDP: Closing socket
Tue Jul 26 10:49:10 2011 SIGUSR1[soft,tls-error] received, process restarting
Tue Jul 26 10:49:10 2011 Restart pause, 2 second(s)
Tue Jul 26 10:49:12 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Tue Jul 26 10:49:12 2011 Re-using SSL/TLS context
Tue Jul 26 10:49:12 2011 LZO compression initialized
Tue Jul 26 10:49:12 2011 Control Channel MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
Tue Jul 26 10:49:12 2011 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Tue Jul 26 10:49:12 2011 Local Options hash (VER=V4): 'd79ca330'
Tue Jul 26 10:49:12 2011 Expected Remote Options hash (VER=V4): 'f7df56b8'
Tue Jul 26 10:49:12 2011 Socket Buffers: R=[8192->8192] S=[8192->8192]
Tue Jul 26 10:49:12 2011 UDPv4 link local: [undef]
Tue Jul 26 10:49:12 2011 UDPv4 link remote: 192.168.*.*:1194

We are testing this trough a internal 2 different ISP modem. Both have NAT installed and turned on to redirect to the VPN server.

Title: Re: OpenVPN Connection failed
Post by: jbosman on Wednesday 03 August 2011, 12:04:37 am
No one?

Title: Re: OpenVPN Connection failed
Post by: rosch on Monday 08 August 2011, 08:03:48 pm
Not being an expert (yet :-) ) all I can tell you is that I am getting a similar log when I try to do two factor authentication.
My endian is version 2.4.1.
So far I have only been testing from the inside of the network.

Are you using two factor by any chance?

Title: Re: OpenVPN Connection failed
Post by: jeremycald on Saturday 20 October 2012, 02:47:53 am
Most of the time when you have the TLS sync timeout it is a network communication issue (firewall, port forwarding, etc.)

You might check your firewall rules and make sure that nothing is touching 1194/udp (default port for OpenVPN)  I just realized that I had a rule grabbing a large chunk of udp ports and forwarding to a device and port 1194 got swept up in that.

Title: Re: OpenVPN Connection failed
Post by: hinge on Thursday 07 February 2013, 02:24:56 pm
hi! i want to ask, im already connected to my OpenVPN Server but i cant access the computer within network? What the possible solution for this?

im Using EFW 2.4.1 and client is Windows OS.


Thank You in Advance for Help..   

Title: Re: OpenVPN Connection failed
Post by: vsenko on Thursday 07 February 2013, 11:04:54 pm
If you have VPN firewall enabled (Firewall -> VPN traffic), then you have to grant access explicitly.
You can disable VPN firewall for testing purposes.

Title: Re: OpenVPN Connection failed
Post by: hinge on Friday 08 February 2013, 11:18:20 am
Actually i try that and i set to ANY but its the same problem i encountered  ??? ??? ???


Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media