In our infrastructure one of the client (OS: Windows 10 64 bit, Client 64-bit OpenVPN 2.4.8) is not able to connect.
After importing the correct profile he tries to launch the connection but he then receives the following Error:
TCP: connect to [AF_INET]OURPUBLICIP:443 failed: Unknown error
When he tries to curl the public IP he then receives:
Code: Select all
$ curl -vvv http://OURIP
* Trying OURIP:80...
* TCP_NODELAY set
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
0 0 0 0 0 0 0 0 --:--:-- 0:00:20 --:--:-- 0* connect to OURIP port 80 failed: Timed out
* Failed to connect to OURIP port 80: Timed out
0 0 0 0 0 0 0 0 --:--:-- 0:00:21 --:--:-- 0
* Closing connection 0
curl: (28) Failed to connect to OURIP port 80: Timed outCode: Select all
Mon Mar 09 17:02:40 2020 us=521200 Current Parameter Settings:
Mon Mar 09 17:02:40 2020 us=521200 config = 'OURWIFIPROFILENAME.ovpn'
Mon Mar 09 17:02:40 2020 us=521200 mode = 0
Mon Mar 09 17:02:40 2020 us=521200 show_ciphers = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 show_digests = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 show_engines = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 genkey = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 key_pass_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521200 show_tls_ciphers = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 connect_retry_max = 0
Mon Mar 09 17:02:40 2020 us=521200 Connection profiles [0]:
Mon Mar 09 17:02:40 2020 us=521200 proto = tcp-client
Mon Mar 09 17:02:40 2020 us=521200 local = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521200 local_port = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521200 remote = '52.213.81.202'
Mon Mar 09 17:02:40 2020 us=521200 remote_port = '443'
Mon Mar 09 17:02:40 2020 us=521200 remote_float = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 bind_defined = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 bind_local = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 bind_ipv6_only = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 connect_retry_seconds = 5
Mon Mar 09 17:02:40 2020 us=521200 connect_timeout = 120
Mon Mar 09 17:02:40 2020 us=521200 socks_proxy_server = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521200 socks_proxy_port = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 tun_mtu = 1500
Mon Mar 09 17:02:40 2020 us=521698 tun_mtu_defined = ENABLED
Mon Mar 09 17:02:40 2020 us=521698 link_mtu = 1500
Mon Mar 09 17:02:40 2020 us=521698 link_mtu_defined = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 tun_mtu_extra = 0
Mon Mar 09 17:02:40 2020 us=521698 tun_mtu_extra_defined = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 mtu_discover_type = -1
Mon Mar 09 17:02:40 2020 us=521698 fragment = 0
Mon Mar 09 17:02:40 2020 us=521698 mssfix = 1450
Mon Mar 09 17:02:40 2020 us=521698 explicit_exit_notification = 0
Mon Mar 09 17:02:40 2020 us=521698 Connection profiles END
Mon Mar 09 17:02:40 2020 us=521698 remote_random = ENABLED
Mon Mar 09 17:02:40 2020 us=521698 ipchange = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 dev = 'tun'
Mon Mar 09 17:02:40 2020 us=521698 dev_type = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 dev_node = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 lladdr = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 topology = 1
Mon Mar 09 17:02:40 2020 us=521698 ifconfig_local = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 ifconfig_remote_netmask = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 ifconfig_noexec = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 ifconfig_nowarn = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 ifconfig_ipv6_local = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 ifconfig_ipv6_netbits = 0
Mon Mar 09 17:02:40 2020 us=521698 ifconfig_ipv6_remote = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 shaper = 0
Mon Mar 09 17:02:40 2020 us=521698 mtu_test = 0
Mon Mar 09 17:02:40 2020 us=521698 mlock = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 keepalive_ping = 0
Mon Mar 09 17:02:40 2020 us=521698 keepalive_timeout = 0
Mon Mar 09 17:02:40 2020 us=521698 inactivity_timeout = 0
Mon Mar 09 17:02:40 2020 us=521698 ping_send_timeout = 0
Mon Mar 09 17:02:40 2020 us=521698 ping_rec_timeout = 0
Mon Mar 09 17:02:40 2020 us=521698 ping_rec_timeout_action = 0
Mon Mar 09 17:02:40 2020 us=521698 ping_timer_remote = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 remap_sigusr1 = 0
Mon Mar 09 17:02:40 2020 us=521698 persist_tun = ENABLED
Mon Mar 09 17:02:40 2020 us=521698 persist_local_ip = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 persist_remote_ip = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 persist_key = ENABLED
Mon Mar 09 17:02:40 2020 us=521698 passtos = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 resolve_retry_seconds = 1000000000
Mon Mar 09 17:02:40 2020 us=521698 resolve_in_advance = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 username = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 groupname = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 chroot_dir = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 cd_dir = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 writepid = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 up_script = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 down_script = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 down_pre = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 up_restart = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 up_delay = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 daemon = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 inetd = 0
Mon Mar 09 17:02:40 2020 us=522199 log = ENABLED
Mon Mar 09 17:02:40 2020 us=522199 suppress_timestamps = DISABLED
Mon Mar 09 17:02:40 2020 us=522199 machine_readable_output = DISABLED
Mon Mar 09 17:02:40 2020 us=522199 nice = 0
Mon Mar 09 17:02:40 2020 us=522199 verbosity = 7
Mon Mar 09 17:02:40 2020 us=522199 mute = 0
Mon Mar 09 17:02:40 2020 us=522199 gremlin = 0
Mon Mar 09 17:02:40 2020 us=522199 status_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522199 status_file_version = 1
Mon Mar 09 17:02:40 2020 us=522199 status_file_update_freq = 60
Mon Mar 09 17:02:40 2020 us=522199 occ = ENABLED
Mon Mar 09 17:02:40 2020 us=522199 rcvbuf = 0
Mon Mar 09 17:02:40 2020 us=522199 sndbuf = 0
Mon Mar 09 17:02:40 2020 us=522199 sockflags = 0
Mon Mar 09 17:02:40 2020 us=522199 fast_io = DISABLED
Mon Mar 09 17:02:40 2020 us=522199 comp.alg = 2
Mon Mar 09 17:02:40 2020 us=522199 comp.flags = 1
Mon Mar 09 17:02:40 2020 us=522199 route_script = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522199 route_default_gateway = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522199 route_default_metric = 0
Mon Mar 09 17:02:40 2020 us=522199 route_noexec = DISABLED
Mon Mar 09 17:02:40 2020 us=522199 route_delay = 5
Mon Mar 09 17:02:40 2020 us=522199 route_delay_window = 30
Mon Mar 09 17:02:40 2020 us=522199 route_delay_defined = ENABLED
Mon Mar 09 17:02:40 2020 us=522199 route_nopull = DISABLED
Mon Mar 09 17:02:40 2020 us=522199 route_gateway_via_dhcp = DISABLED
Mon Mar 09 17:02:40 2020 us=522199 allow_pull_fqdn = DISABLED
Mon Mar 09 17:02:40 2020 us=522199 Pull filters:
Mon Mar 09 17:02:40 2020 us=522199 ignore "route-method"
Mon Mar 09 17:02:40 2020 us=522199 management_addr = '127.0.0.1'
Mon Mar 09 17:02:40 2020 us=522199 management_port = '25340'
Mon Mar 09 17:02:40 2020 us=522199 management_user_pass = 'stdin'
Mon Mar 09 17:02:40 2020 us=522199 management_log_history_cache = 250
Mon Mar 09 17:02:40 2020 us=522199 management_echo_buffer_size = 100
Mon Mar 09 17:02:40 2020 us=522199 management_write_peer_info_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522199 management_client_user = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522199 management_client_group = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522199 management_flags = 6
Mon Mar 09 17:02:40 2020 us=522199 shared_secret_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 key_direction = 1
Mon Mar 09 17:02:40 2020 us=522701 ciphername = 'AES-256-CBC'
Mon Mar 09 17:02:40 2020 us=522701 ncp_enabled = ENABLED
Mon Mar 09 17:02:40 2020 us=522701 ncp_ciphers = 'AES-256-GCM:AES-128-GCM'
Mon Mar 09 17:02:40 2020 us=522701 authname = 'SHA512'
Mon Mar 09 17:02:40 2020 us=522701 prng_hash = 'SHA1'
Mon Mar 09 17:02:40 2020 us=522701 prng_nonce_secret_len = 16
Mon Mar 09 17:02:40 2020 us=522701 keysize = 0
Mon Mar 09 17:02:40 2020 us=522701 engine = DISABLED
Mon Mar 09 17:02:40 2020 us=522701 replay = ENABLED
Mon Mar 09 17:02:40 2020 us=522701 mute_replay_warnings = DISABLED
Mon Mar 09 17:02:40 2020 us=522701 replay_window = 64
Mon Mar 09 17:02:40 2020 us=522701 replay_time = 15
Mon Mar 09 17:02:40 2020 us=522701 packet_id_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 use_iv = ENABLED
Mon Mar 09 17:02:40 2020 us=522701 test_crypto = DISABLED
Mon Mar 09 17:02:40 2020 us=522701 tls_server = DISABLED
Mon Mar 09 17:02:40 2020 us=522701 tls_client = ENABLED
Mon Mar 09 17:02:40 2020 us=522701 key_method = 2
Mon Mar 09 17:02:40 2020 us=522701 ca_file = 'widi-dev.pem'
Mon Mar 09 17:02:40 2020 us=522701 ca_path = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 dh_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 cert_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 extra_certs_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 priv_key_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 pkcs12_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 cryptoapi_cert = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 cipher_list = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 cipher_list_tls13 = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 tls_cert_profile = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 tls_verify = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 tls_export_cert = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 verify_x509_type = 0
Mon Mar 09 17:02:40 2020 us=522701 verify_x509_name = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 crl_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 ns_cert_type = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_eku = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 ssl_flags = 0
Mon Mar 09 17:02:40 2020 us=522701 tls_timeout = 2
Mon Mar 09 17:02:40 2020 us=522701 renegotiate_bytes = -1
Mon Mar 09 17:02:40 2020 us=522701 renegotiate_packets = 0
Mon Mar 09 17:02:40 2020 us=523201 renegotiate_seconds = 3600
Mon Mar 09 17:02:40 2020 us=523201 handshake_window = 60
Mon Mar 09 17:02:40 2020 us=523201 transition_window = 3600
Mon Mar 09 17:02:40 2020 us=523201 single_session = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 push_peer_info = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 tls_exit = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 tls_auth_file = 'ta.key'
Mon Mar 09 17:02:40 2020 us=523201 tls_crypt_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_private_mode = 00000000
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_private_mode = 00000000
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_private_mode = 00000000
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_private_mode = 00000000
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_private_mode = 00000000
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_private_mode = 00000000
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_private_mode = 00000000
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_private_mode = 00000...With the same Windows10 terminal, connecting through another external network, he is then able to connect.
What should we look into ?
Which are the networking settings to investigate on, if any ?
Thank you in advance for support.