[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

[Openvpn-users] Request Small help => TLS Problems


  • Subject: [Openvpn-users] Request Small help => TLS Problems
  • From: calvano69@xxxxxxxxxxx
  • Date: Sat, 15 Sep 2007 11:01:12 +0200 (CEST)


Hi

i request your help for a small problems.
I want start a bridge on two linux server with OpenVPN.

I have configured the server, copy dh1024.pm,cacert.pem and ta.key on the other linux "client".

I have create a new certificat on the server and put it on the client.

and when i start openvpn, i have this error into my server linux:

Sat Sep 15 10:50:14 2007 us=624361 TLS Error: incoming packet authentication failed from 90.29.115.213:32777
Sat Sep 15 10:50:17 2007 us=99596 Authenticate/Decrypt packet error: packet HMAC authentication failed
Sat Sep 15 10:50:17 2007 us=99641 TLS Error: incoming packet authentication failed from 90.29.115.213:32777
Sat Sep 15 10:50:18 2007 us=337615 Authenticate/Decrypt packet error: packet HMAC authentication failed
Sat Sep 15 10:50:18 2007 us=337665 TLS Error: incoming packet authentication failed from 90.29.115.213:32777
Sat Sep 15 10:50:20 2007 us=814013 Authenticate/Decrypt packet error: packet HMAC authentication failed


where is the problems ?

configuration on server:
local 213.47.31.128
port 1194
proto udp
dev tap0
tun-mtu 1500
mssfix
persist-key
persist-tun
dh /etc/openvpn/certificats/dh1024.pem
ca /etc/ssl/cacert.pem
cert /etc/openvpn/certificats/openvpn-server.crt
key /etc/openvpn/certificats/openvpn-server.key
tls-auth /etc/openvpn/certificats/ta.key 0
server-bridge 172.21.1.254 255.255.255.0 172.21.1.190 172.21.1.191
keepalive 10 120
cipher BF-CBC
comp-lzo
max-clients 15
status /var/log/openvpn/status-Intersites.log
log-append /var/log/openvpn/openvpn-Intersites.log
verb 4
mute 10


and on the client:
client
dev tap0
proto udp
remote 213.47.31.128 1194
resolv-retry infinite
nobind
tls-client
persist-key
persist-tun
ca /etc/ssl/cacert.pem
cert /etc/openvpn/certificats/serveur-intersite.crt
key /etc/openvpn/certificats/serveur-intersite.key
tls-auth /etc/openvpn/certificats/ta.key 0
ns-cert-type server
cipher BF-CBC
comp-lzo
verb 2
mute 5
status /var/log/openvpn/status-Intersites.log
log-append /var/log/openvpn/openvpn-Intersites.log




thanks for your help


____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users