[OpenVPN home]	[Date Prev]	[Date Index]	[Date Next]
[OpenVPN mailing lists]	[Thread Prev]	[Thread Index]	[Thread Next]

Re: [Openvpn-users] Latest Beta with Windows XP and TLS

Subject: Re: [Openvpn-users] Latest Beta with Windows XP and TLS
From: James MacLean <macleajb@xxxxxxxxxxx>
Date: Mon, 18 Aug 2003 22:28:14 -0300 (ADT)

Thanks James,

Right on the money. Did not have tls-auth setup on the windows side. Looks 
much better now :).

JES

On Mon, 18 Aug 2003, James Yonan wrote:

> Hi James,
> 
> Yes, the Windows port should work fine with certificates.  Make sure you are
> using compatible options on either side of the connection.  The "TLS Error:
> cannot locate HMAC" error could happen if you are using --tls-auth on one side
> but not the other side of the connection.
> 
> James
> 
> James MacLean <macleajb@xxxxxxxxxxx> said:
> 
> > Hi Folks (James:)),
> > 
> > Should the Windows port work with certificates? I had to switch to secret 
> > keys to get my first test machine working, which seems to work just dandy. 
> > 
> > When I switch to certificates, ones that work from a Linux box, I am 
> > getting failure to handshake and on the server side:
> > 
> > openvpn[19224]: UDP READ [14] from 24.222.132.53:5021:
> P_CONTROL_HARD_RESET_CLIENT_V1 kid=0
> > openvpn[19224]: TLS: tls_pre_decrypt: first response to initial packet
> sid=cd2e902b 4a839871
> > openvpn[19224]: TLS Error: cannot locate HMAC in incoming packet from
> 24.222.130.53:5000
> > openvpn[19224]: UDP READ [14] from 24.222.132.53:5021:
> P_CONTROL_HARD_RESET_CLIENT_V1 kid=0
> > openvpn[19224]: TLS: tls_pre_decrypt: first response to initial packet
> sid=cd2e902b 4a839871
> > openvpn[19224]: TLS Error: cannot locate HMAC in incoming packet from
> 24.222.130.53:5000
> > 
> > Maybe I glossed over something I should have read? Or maybe it is because 
> > it is going through a FW on both ends? I expect it is not because of the 
> > FW's as the secret key works fine.
> > 
> > take care,
> > JES
> > -- 
> > James B. MacLean        macleajb@xxxxxxxxxxx
> > Department of Education 
> > Nova Scotia, Canada
> > B3M 4B2
> >      
> > 
> > 
> > 
> > -------------------------------------------------------
> > This SF.Net email sponsored by: Free pre-built ASP.NET sites including
> > Data Reports, E-commerce, Portals, and Forums are available now.
> > Download today and enter to win an XBOX or Visual Studio .NET.
> > http://aspnet.click-url.com/go/psa00100003ave/direct;at.aspnet_072303_01/01
> > _______________________________________________
> > Openvpn-users mailing list
> > Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
> > https://lists.sourceforge.net/lists/listinfo/openvpn-users
> > 
> 
> 
> 
> 

-- 
James B. MacLean        macleajb@xxxxxxxxxxx
Department of Education 
Nova Scotia, Canada
B3M 4B2

Follow-Ups:
- Re: [Openvpn-users] Latest Beta with Windows XP and TLS
  - From: Rich Denis

References:
- Re: [Openvpn-users] Latest Beta with Windows XP and TLS
  - From: James Yonan

Prev by Date: Re: [Openvpn-users] Need 1.5 beta testers for *BSD, Linux 2.2, OS X
Next by Date: Re: [Openvpn-users] Latest Beta with Windows XP and TLS
Previous by thread: Re: [Openvpn-users] Latest Beta with Windows XP and TLS
Next by thread: Re: [Openvpn-users] Latest Beta with Windows XP and TLS
Index(es):
- Date
- Thread