Hey guys,
I posted this error on the sourceforge list first but have not gotten any productive responses so I figured I'd see if anyone that read these forums has run into this error before.
I am trying to setup openvpn using routing and having some issues. (I removed all comments and spacing in the config files for the sake of space.)
I followed the HOWTO installation notes on the openvpn website and have openvpn installed on two systems. Right now I'm just trying to setup a test environment with clients authenticating to the server where I can see routes being setup.
According to the server config file at the bottom the VPN subnet should be 192.168.3.x and the vpn server should be 3.1.
When I run the openvpn server...
Code:
> ...
> Tue Mar 3 ... IFCONFIG POOL: base=192.168.3.4 size=62 Tue Mar 3 ...
> IFCONFIG POOL LIST Tue Mar 3 ... Initialization Sequence Complete
and it waits there until I connect a client. After I attempt to connect a client
Code:
> Tue Mar 3 ... MULTI: multi_create_instance called Tue Mar 3 ...
> 192.168.2.2:49550 Re-using SSL/TLS context Tue Mar 3 ...
> 192.168.2.2:49550 LZO compression initialized Tue Mar 3 ...
> 192.168.2.2:49550 Control Channel MTU parms [ L:1558 D:166
EF:66 EB:0 ET:0 EL:0 ]
> Tue Mar 3 ... 192.168.2.2:49550 Local Options hash (VER=V4): 'a2e63101'
> Tue Mar 3 ... 192.168.2.2:49550 Expected Remote Options hash (VER=V4):
'272f1b58'
> Tue Mar 3 ... 192.168.2.2:49550 TLS: Initial packet from
> 192.168.2.2:49550 Tue Mar 3 ... read UDPv4
[ECONNREFUSED|ECONNREFUSED|ECONNREFUSED|ECONNREFUSED]: Connection Refused (code 111)
and the client posts a continuous
Code:
> Tue Mar 3 ... TLS Error: TLS handshake failed
Then I interrupt and it closes socket and fails.
I have triple checked that all of my keys/crts are created properly and in the correct place according to the HOWTO on the OpenVPN website as well as all paths are pointing to the correct places... My config files are below.
Any help would be much appreciated.
Thanks,
Nate
server.conf
On a box with IP: 192.168.2.1
Code:
port 1194
proto udp
dev tun0
server 192.168.3.0 255.255.255.0
# certificate paths are here
cipher AES-128-CBC # AES
tls-auth /etc/openvpn/2.0/keys/ta.key 0
comp-lzo
client.conf
On a box with IP: 192.168.2.2
Code:
client
dev tun
proto udp
remote 192.168.2.1 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
tls-auth ta.key 1
cipher AES-128-CBC
comp-lzo
auth-user-pass