Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In Register

Quick Links


Categories

In this Discussion

OpenVPN won't connect
New on LowEndTalk? Please Register and read our Community Rules.

All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.

OpenVPN won't connect

chinmoychinmoy Member
edited December 2012 in Help

Hello,

I got a IPXcore 32 MB vps last night for vpn. I've been following this tutorial https://forum.ramhost.us/bbs/viewtopic.php?id=4. Everything goes right but at the end the vpn won't connect.

Here are the logs:

Wed Dec 05 19:54:09 2012 LZO compression initialized

Wed Dec 05 19:54:09 2012 Control Channel MTU parms [ L:1544 D:140 EF:40 EB:0 ET:0 EL:0 ]
Wed Dec 05 19:54:09 2012 Socket Buffers: R=[8192->8192] S=[8192->8192]
Wed Dec 05 19:54:09 2012 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:135 ET:0 EL:0 AF:3/1 ]
Wed Dec 05 19:54:09 2012 Local Options hash (VER=V4): '69109d17'
Wed Dec 05 19:54:09 2012 Expected Remote Options hash (VER=V4): 'c0103fa8'
Wed Dec 05 19:54:09 2012 Attempting to establish TCP connection with 198.144.189.6:1194
Wed Dec 05 19:54:09 2012 TCP connection established with 198.144.189.6:1194
Wed Dec 05 19:54:09 2012 TCPv4_CLIENT link local: [undef]
Wed Dec 05 19:54:09 2012 TCPv4_CLIENT link remote: 198.144.189.6:1194
Wed Dec 05 19:54:09 2012 TLS: Initial packet from 198.144.189.6:1194, sid=8a140089 81e8e770
Wed Dec 05 19:54:10 2012 Connection reset, restarting [-1]
Wed Dec 05 19:54:10 2012 TCP/UDP: Closing socket
Wed Dec 05 19:54:10 2012 SIGUSR1[soft,connection-reset] received, process restarting
Wed Dec 05 19:54:10 2012 Restart pause, 5 second(s)
Wed Dec 05 19:54:15 2012 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Wed Dec 05 19:54:15 2012 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Wed Dec 05 19:54:15 2012 Re-using SSL/TLS context
Wed Dec 05 19:54:15 2012 LZO compression initialized
Wed Dec 05 19:54:15 2012 Control Channel MTU parms [ L:1544 D:140 EF:40 EB:0 ET:0 EL:0 ]
Wed Dec 05 19:54:15 2012 Socket Buffers: R=[8192->8192] S=[8192->8192]
Wed Dec 05 19:54:15 2012 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:135 ET:0 EL:0 AF:3/1 ]
Wed Dec 05 19:54:15 2012 Local Options hash (VER=V4): '69109d17'
Wed Dec 05 19:54:15 2012 Expected Remote Options hash (VER=V4): 'c0103fa8'
Wed Dec 05 19:54:15 2012 Attempting to establish TCP connection with 198.144.189.6:1194
Wed Dec 05 19:54:15 2012 TCP connection established with 198.144.189.6:1194
Wed Dec 05 19:54:15 2012 TCPv4_CLIENT link local: [undef]
Wed Dec 05 19:54:15 2012 TCPv4_CLIENT link remote: 198.144.189.6:1194
Wed Dec 05 19:54:16 2012 TLS: Initial packet from 198.144.189.6:1194, sid=f45cb999 1f755233
Wed Dec 05 19:54:16 2012 Connection reset, restarting [-1]
Wed Dec 05 19:54:16 2012 TCP/UDP: Closing socket
Wed Dec 05 19:54:16 2012 SIGUSR1[soft,connection-reset] received, process restarting
Wed Dec 05 19:54:16 2012 Restart pause, 5 second(s)
Wed Dec 05 19:54:21 2012 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Wed Dec 05 19:54:21 2012 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables

Could I have some help with this?

Comments

  • HalfEatenPieHalfEatenPie Veteran

    If you're using windows (client):

    Are you running the OpenVPN Client as Admin?

  • EvixoEvixo Member

    Are you trying to connect from home or from behind some firewall? You might want to try to change port 1194 to 443.

  • chinmoychinmoy Member

    @HalfEatenPie said: If you're using windows (client):

    Are you running the OpenVPN Client as Admin?

    Yup......running as administrator.

    @Evixo said: Are you trying to connect from home or from behind some firewall? You might want to try to change port 1194 to 443.

    I'm trying to connect from home. I tried to change the port no. to 443. That also is not working.

  • ChanChan Member

    It may help if you post both your server and client configs

  • HalfEatenPieHalfEatenPie Veteran

    @chinmoy said: Wed Dec 05 19:54:15 2012 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.

    @chinmoy said: Wed Dec 05 19:54:15 2012 Attempting to establish TCP connection with 198.144.189.6:1194

    Wed Dec 05 19:54:15 2012 TCP connection established with 198.144.189.6:1194

    @chinmoy said: Wed Dec 05 19:54:16 2012 TLS: Initial packet from 198.144.189.6:1194, sid=f45cb999 1f755233

    Wed Dec 05 19:54:16 2012 Connection reset, restarting [-1]
    Wed Dec 05 19:54:16 2012 TCP/UDP: Closing socket

    @chinmoy said: Wed Dec 05 19:54:16 2012 Restart pause, 5 second(s)

    Wed Dec 05 19:54:21 2012 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.

    Did you set up SSL the way they told you to?

  • krs360krs360 Member

    that server doesn't seem to be responding on either 443 or 1194 - also the error message complains about certificates so maybe something wrong in your config?

  • chinmoychinmoy Member

    @Chan said: It may help if you post both your server and client configs

    Server config

    dev tun

    proto tcp
    port 443

    ca /etc/openvpn/easy-rsa/2.0/keys/ca.crt
cert /etc/openvpn/easy-rsa/2.0/keys/server.crt
key /etc/openvpn/easy-rsa/2.0/keys/server.key
dh /etc/openvpn/easy-rsa/2.0/keys/dh1024.pem

user nobody
group nogroup
server 10.8.0.0 255.255.255.0

persist-key
persist-tun

#status openvpn-status.log
#verb 3
client-to-client

push "redirect-gateway def1"
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 4.2.2.4"

comp-lzo

    Client config

    client

    dev tun
    proto tcp

    remote 198.144.189.6 443

    resolv-retry infinite
    nobind

    persist-key
    persist-tun

    ca ca.crt
    cert client1.crt
    key client1.key

    comp-lzo
    verb 3

    These are configs. Thing is at some point after long retrying the vpn connected. I tested it with hulu/spotify and whatismyip. Then I disconnected it...and now it won't connect again.

  • chinmoychinmoy Member

    The vpn is now being connected but the speed is really low and the connection keeps dropping. I didn't change/edit anything. What could be the explanation for this?

  • NHRoelNHRoel Member
    edited December 2012

    @chinmoy said: The vpn is now being connected but the speed is really low and the connection keeps dropping. I didn't change/edit anything. What could be the explanation for this?

    Ping your vpn server from your home and also do a traceroute.

  • novaflashnovaflash Member

    @chinmoy: please be aware that any lag on the line or any packet loss will cause severe problems when using OpenVPN over TCP. Instead consider using UDP. The reasons for this can be found in this wonderful document that I just happen to have stolen off the interwebz using my brainpowers and also a little bit of Google: http://sites.inka.de/~W1011/devel/tcp-tcp.html

  • chinmoychinmoy Member

    @novaflash said: please be aware that any lag on the line or any packet loss will cause severe problems when using OpenVPN over TCP. Instead consider using UDP. The reasons for this can be found in this wonderful document that I just happen to have stolen off the interwebz using my brainpowers and also a little bit of Google: http://sites.inka.de/~W1011/devel/tcp-tcp.html

    I changed the port from tcp to udp. Now the connection is stable for first 5-6 minutes. After that, it drops.

    I now how to google stuff myself :). But I do not understand most of them as I'm new to linux and networking. Thanks for bearing with me.

Sign In or Register to comment.