[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

[Openvpn-users] connection issues


  • Subject: [Openvpn-users] connection issues
  • From: jamal ayach <jamal.ayach@xxxxxxxx>
  • Date: Thu, 23 Aug 2007 11:06:25 -0400

Attached are my server and client configs. Doing "/etc/init.d/openvpn start" works fine. When I try to connect from with from my client-ws "/usr/sbin/openvpn client.conf" I get:

UDPv4 WRITE [14] to <ovpn_ip>:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0 UDPv4 WRITE [14] to <ovpn_ip>:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0 UDPv4 WRITE [14] to <ovpn_ip>:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0

Server's openvpn.log:
TLS Error: cannot locate HMAC in incoming packet from 142.135.7.157:32774

Server: Linux Debian 2.6.18-4-686
Uses PAM module to authenticate user credentials with ACE Server (working)

Client: Linux Debian 2.6.14-1-686
Submit username + passcode

I also noticed that when starting openvpn server, 2 daemons are created. Is that normal ?

9425 /usr/sbin/openvpn --writepid /var/run/openvpn.server.pid --daemon ovpn-server --cd /etc/openvpn --config /etc/openvpn/server.conf

9426 /usr/sbin/openvpn --writepid /var/run/openvpn.server.pid --daemon ovpn-server --cd /etc/openvpn --config /etc/openvpn/server.conf


--
-- Jamal Ayach +++ jamal.ayach@xxxxxxxx
-- Environnement Canada / Environment Canada
-- tel. 514.421.5010

local "my_openvpn_server_ip on eth0"
port 1194
proto udp
dev tap0
float
client-cert-not-required

username-as-common-name

ca /etc/openvpn/examples/easy-rsa/keys/ca.crt
cert /etc/openvpn/examples/easy-rsa/keys/server.crt
key /etc/openvpn/examples/easy-rsa/keys/server.key
dh /etc/openvpn/examples/easy-rsa/keys/dh2048.pem

ifconfig-pool-persist /etc/openvpn/ipp.txt

server-bridge "server_ip" "255.255.255.0" "client_ip.240" "client_ip.249"

keepalive 10 120

tls-auth /etc/openvpn/examples/easy-rsa/ta.key 0

cipher AES-128-CBC

comp-lzo

max-clients 10
user nobody

group nogroup

persist-key

persist-tun

status /etc/openvpn/openvpn-status.log 300

log-append  /etc/openvpn/openvpn.log

verb 7

plugin /usr/lib/openvpn/openvpn-auth-pam.so openvpn
client

dev tap

proto udp

float

remote <my_openvpn_server_hostname> 1194

resolv-retry 30

user nobody
group nogroup

nobind

tls-client

persist-key
persist-tun

mute-replay-warnings

auth-user-pass

ca /users/dor/aspy/jaa/cmc.ec.gc.ca/openvpn_client/easy-rsa/keys/ca.crt

ns-cert-type server

cipher AES-128-CBC

comp-lzo

verb 7
_______________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users