- switched my router to route 1194 TCP traffic instead of UDP to the internal OpenVPN server.
- switched from "pronto udp" in the server and client ovpn files to "proto tcp". Tried also the "pronto tcp-client" and tcp-server.
- Also added a http-proxy tag in the client but took it out for now for testing to eliminate the firewall from the issue.
Do I need to do something additional for TCP? Below are my current UDP ovpn files with the above changes where relevant:
client.ovpn:
Code: Select all
client
dev tap
proto tcp-client
remote <home_system_url_here> 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca "C:\\Program Files\\OpenVPN\\config\\ca.crt"
# Specific user cert and key file.
# Modify for your use.
cert "c:\\Program Files\\OpenVPN\\config\\syarbrou.crt"
key "C:\\Program Files\\OpenVPN\\config\\syarbrou.key"
tls-auth "C:\\Program Files\\OpenVPN\\config\\ta.key" 1
cipher AES-256-CBC
comp-lzo
verb 3
Code: Select all
port 1194
proto tcp-server
dev tap
dev-node OpenVPN
ca "C:\\Program Files\\OpenVPN\\config\\ca.crt"
cert "C:\\Program Files\\OpenVPN\\config\\server.crt"
key "C:\\Program Files\\OpenVPN\\config\\server.key" # This file should be kept secret
dh "C:\\Program Files\\OpenVPN\\config\\dh2048.pem"
ifconfig-pool-persist ipp.txt
# Specific to my home LAN...
server-bridge 192.168.1.25 255.255.255.0 192.168.1.26 192.168.1.30
push "redirect-gateway def1"
push "dhcp-option DNS 192.168.1.14"
keepalive 10 120
comp-lzo
tls-auth "C:\\Program Files\\OpenVPN\\config\\ta.key" 0
cipher AES-256-CBC
max-clients 3
persist-key
persist-tun
status "C:\\Program Files\\OpenVPN\\log\\openvpn-status.log"
verb 3
Thu Jan 08 11:16:52 2009 Local Options hash (VER=V4): 'ad144f1c'
Thu Jan 08 11:16:52 2009 Expected Remote Options hash (VER=V4): '88107939'
Thu Jan 08 11:16:52 2009 TCP connection established with 15.190.64.31:6679
Thu Jan 08 11:16:52 2009 TCPv4_SERVER link local: [undef]
Thu Jan 08 11:16:52 2009 TCPv4_SERVER link remote: 15.190.64.31:6679
Thu Jan 08 11:17:52 2009 70.195.65.38:6679 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Thu Jan 08 11:17:52 2009 70.195.65.38:6679 TLS Error: TLS handshake failed
Thu Jan 08 11:17:52 2009 70.195.65.38:6679 Fatal TLS error (check_tls_errors_co), restarting
Thu Jan 08 11:17:52 2009 70.195.65.38:6679 SIGUSR1[soft,tls-error] received, client-instance restarting
Thu Jan 08 11:17:52 2009 TCP/UDP: Closing socket
Any ideas? UDP works successfully everytime.
Thanks.
JR