LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 03-20-2016, 12:09 AM   #1
sachin.davra
Member
 
Registered: Jul 2013
Posts: 213

Rep: Reputation: Disabled
Issue in oppenvpn configuration


I have configured openvpn server on AWS instance using http://www.unixmen.com/setup-openvpn...nt-centos-6-5/
but when i connect try to connect client
Code:
[root@CentOS02 ~]# openvpn --config /etc/openvpn/client.conf
Sun Mar 20 09:33:51 2016 OpenVPN 2.3.10 i386-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [MH] [IPv6] built on Jan  4 2016
Sun Mar 20 09:33:51 2016 library versions: OpenSSL 0.9.8e-fips-rhel5 01 Jul 2008, LZO 2.02
Sun Mar 20 09:33:51 2016 WARNING: file '/etc/openvpn/client.key' is group or others accessible
Sun Mar 20 09:33:51 2016 Socket Buffers: R=[110592->110592] S=[110592->110592]
Sun Mar 20 09:33:51 2016 UDPv4 link local: [undef]
Sun Mar 20 09:33:51 2016 UDPv4 link remote: [AF_INET]52.36.0.219:1194
Sun Mar 20 09:34:51 2016 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sun Mar 20 09:34:51 2016 TLS Error: TLS handshake failed
Sun Mar 20 09:34:51 2016 SIGUSR1[soft,tls-error] received, process restarting
Sun Mar 20 09:34:51 2016 Restart pause, 2 second(s)
Sun Mar 20 09:34:53 2016 Socket Buffers: R=[110592->110592] S=[110592->110592]
Sun Mar 20 09:34:53 2016 UDPv4 link local: [undef]
Sun Mar 20 09:34:53 2016 UDPv4 link remote: [AF_INET]52.36.0.219:1194
client side i am using centos 5 X86.
on server side firewall rule is added as per defined in above link and client side firewall is disabled.
Code:
iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE

I am not able to connect openvpn server from client.
but if i do same things in local environment using vmware workstation. I do not face any issue.
Any help is appreciated.
 
Old 03-22-2016, 10:06 AM   #2
sundialsvcs
LQ Guru
 
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 7,151

Rep: Reputation: 2203Reputation: 2203Reputation: 2203Reputation: 2203Reputation: 2203Reputation: 2203Reputation: 2203Reputation: 2203Reputation: 2203Reputation: 2203Reputation: 2203
You have configured the server to expect TLS security on the initial handshake ... a very desirable anti-DOS precaution ... but the remote did not provide the expected credentials. Therefore, the connection did not proceed. ("By design, it didn't even get to first base.")

Carefully check the TLS-related settings in the configuration file on the client side, and also look for any error-messages there. Be certain that the client is, in fact, providing the TLS credential that the server requires.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
VPN configuration issue Completely Clueless Mandriva 1 04-01-2014 04:05 PM
IP configuration issue cdgtcc Linux - Newbie 8 11-16-2008 07:03 PM
Apache 2.0.50 Configuration Issue kaplan71 Linux - Software 3 08-11-2004 09:09 AM
postfix configuration issue Robin01 Linux - Newbie 0 12-30-2003 07:41 PM
eth0 configuration issue gvaught Linux - Networking 28 11-04-2003 12:24 AM


All times are GMT -5. The time now is 12:54 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration