TLS Error: TLS handshake failed

This forum is for general conversation and user-user networking.
Post Reply
m3run
OpenVpn Newbie
Posts: 1
Joined: Mon Aug 26, 2019 2:04 pm

TLS Error: TLS handshake failed

Post by m3run » Mon Aug 26, 2019 2:07 pm

Hi,

I am using OpenVPN 2.4.6 with OpenSSL 1.0.2n.

Server configuration.

server 192.168.0.0 255.255.0.0
port 1194
ca cca.cer
cert ds.cer
key ds.key
askpass ds.pwd
dh dh1024.pem
log-append openvpn.log
status /openvpn.status
verb 4
mute 100
auth-nocache
proto udp4
dev tun
ifconfig-pool-persist ipp.txt 2.00
script-security 3
auth MD5
topology subnet
max-clients 65532
cipher AES-128-CBC
reneg-sec 0
ping 4
ping-restart 13
push "ping 4"
push "ping-restart 13"

Client configuration

ca ca.pem
cert client.pem
key client.key
askpass client.passwd
client
auth-nocache
dev tun
proto udp4
remote-cert-tls server
script-security 3
mute 100
resolv-retry infinite
cipher AES-128-CBC
reneg-sec 3600
auth MD5

Server Side openvpn log

OpenVPN 2.4.6 i686-pc-linux-gnu [SSL (OpenSSL)] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Aug 8 2019
Mon Aug 26 14:42:00 2019 us=768445 library versions: OpenSSL 1.0.2n 7 Dec 2017
Mon Aug 26 14:42:00 2019 us=769070 ##### VPN is enabled now
Mon Aug 26 14:42:00 2019 us=769120 WARNING: --keepalive option is missing from server config
Mon Aug 26 14:42:05 2019 us=781594 Diffie-Hellman initialized with 1024 bit key
Mon Aug 26 14:42:05 2019 us=783324 TLS-Auth MTU parms [ L:1621 D:1212 EF:38 EB:0 ET:0 EL:3 ]
Mon Aug 26 14:42:05 2019 us=783845 TUN/TAP device tun0 opened
Mon Aug 26 14:42:05 2019 us=783908 TUN/TAP TX queue length set to 100
Mon Aug 26 14:42:05 2019 us=783950 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Mon Aug 26 14:42:05 2019 us=784012 /sbin//ifconfig tun0 192.168.0.1 netmask 255.255.0.0 mtu 1500 broadcast 192.168.255.255
Mon Aug 26 14:42:05 2019 us=786897 Data Channel MTU parms [ L:1621 D:1450 EF:121 EB:406 ET:0 EL:3 ]
Mon Aug 26 14:42:05 2019 us=787005 Socket Buffers: R=[141312->141312] S=[141312->141312]
Mon Aug 26 14:42:05 2019 us=787076 UDPv4 link local (bound): [AF_INET][undef]:1194
Mon Aug 26 14:42:05 2019 us=787098 UDPv4 link remote: [AF_UNSPEC]
Mon Aug 26 14:42:05 2019 us=787129 MULTI: multi_init called, r=256 v=256
Mon Aug 26 14:42:05 2019 us=788533 IFCONFIG POOL: base=192.168.0.2 size=65532, ipv6=0
Mon Aug 26 14:42:05 2019 us=788621 IFCONFIG POOL LIST
Mon Aug 26 14:42:05 2019 us=789285 Initialization Sequence Completed
Mon Aug 26 14:46:14 2019 us=335520 MULTI: multi_create_instance called
Mon Aug 26 14:46:14 2019 us=335627 10.33.66.6:1194 Re-using SSL/TLS context
Mon Aug 26 14:46:14 2019 us=335894 10.33.66.6:1194 Control Channel MTU parms [ L:1621 D:1212 EF:38 EB:0 ET:0 EL:3 ]
Mon Aug 26 14:46:14 2019 us=335925 10.33.66.6:1194 Data Channel MTU parms [ L:1621 D:1450 EF:121 EB:406 ET:0 EL:3 ]
Mon Aug 26 14:46:14 2019 us=336023 10.33.66.6:1194 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1553,tun-mtu 1500,proto UDPv4,cipher AES-128-CBC,auth MD5,keysize 128,key-method 2,tls-server'
Mon Aug 26 14:46:14 2019 us=336044 10.33.66.6:1194 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1553,tun-mtu 1500,proto UDPv4,cipher AES-128-CBC,auth MD5,keysize 128,key-method 2,tls-client'
Mon Aug 26 14:46:14 2019 us=336144 10.33.66.6:1194 TLS: Initial packet from [AF_INET]10.33.66.6:1194, sid=fe536fa6 442ec920
Mon Aug 26 14:46:14 2019 us=486366 10.33.66.6:1194 OpenSSL: error:14089086:lib(20):func(137):reason(134)
Mon Aug 26 14:46:14 2019 us=486389 10.33.66.6:1194 TLS_ERROR: BIO read tls_read_plaintext error
Mon Aug 26 14:46:14 2019 us=486410 10.33.66.6:1194 TLS Error: TLS object -> incoming plaintext read error
Mon Aug 26 14:46:14 2019 us=486430 10.33.66.6:1194 TLS Error: TLS handshake failed
Mon Aug 26 14:46:14 2019 us=486632 10.33.66.6:1194 SIGUSR1[soft,tls-error] received, client-instance restarting


Please help me out. How can we resolve this error -> OpenSSL: error:14089086:lib(20):func(137):reason(134)

Post Reply