TLS_ERROR

Scripts to manage certificates or generate config files
Post Reply
jeanjean
OpenVpn Newbie
Posts: 1
Joined: Thu Sep 14, 2017 1:58 pm

TLS_ERROR

Post by jeanjean » Thu Sep 14, 2017 2:09 pm

Hello,

I have a problem to mount a vpn between a routeur Inhand IR794 ans a OPENVPN server.
In the routeur client, I have always the same error

Sep 14 15:51:09 openvpn[23680]: TLS: Initial packet from *.*.*.*:1194, sid=178f1c1b 3ed6acf3
Sep 14 15:51:12 openvpn[23680]: VERIFY ERROR: depth=1, error=certificate signature failure: /C=FR/ST=***/L=***/O=****/OU=changeme/CN=***/name=changeme/emailAddress=***
<3> Sep 14 15:51:12 openvpn[23680]: TLS_ERROR: BIO read tls_read_plaintext error: error:14090086:lib(20):func(144):reason(134)
<3> Sep 14 15:51:12 openvpn[23680]: TLS Error: TLS object -> incoming plaintext read error
<3> Sep 14 15:51:12 openvpn[23680]: TLS Error: TLS handshake failed

I made all my certs several times.

I load in the routeur the ca.crt and the client.key and client.cert.

I would like to know if it's the serveur.crt which is send by the openvpn serveur and it couldn't been read?

Thanks for you help

jwythe@epicor.com
OpenVpn Newbie
Posts: 1
Joined: Fri Sep 15, 2017 11:42 pm

Re: TLS_ERROR

Post by jwythe@epicor.com » Fri Sep 15, 2017 11:56 pm

I am having the same problem. Server is running OpenVPN 2.4.3 on CentOS 6 and Client is on CentOS 4 running openvpn 2.2.1. Windows OpenVPN works fine to connect to server.

I question whether 2.2.1 can handle certs from 2.4.3 since 2.2.1 seems to generate dh1024.pem while 2.4.3 generates dh1024.pem

If so how to fix/work around?

Post Reply