[Solved] Clients not completing connection

Need help configuring your VPN? Just post here and you'll get that help.
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
pedrosc1967
OpenVpn Newbie
Posts: 2
Joined: Sat Sep 22, 2018 8:34 am

[Solved] Clients not completing connection

Post by pedrosc1967 » Sat Sep 22, 2018 8:40 am

I have openvpn running as server in a raspberry p

When I try to comment from any client like Tunnelblick or Android, the connection gets halted
The version of OpenVPN is
OpenVPN 2.4.0 arm-unknown-linux-gnueabihf [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Jul 18 2017
library versions: OpenSSL 1.0.2l 25 May 2017, LZO 2.08

Log [Android Client]-------------------------------

09:12:20.014 -- EVENT: CORE_THREAD_ACTIVE
09:12:20.015 -- Frame=512/2048/512 mssfix-ctrl=1250
09:12:20.016 -- UNUSED OPTIONS
4 [resolv-retry] [infinite]
5 [nobind]
6 [persist-key]
7 [persist-tun]
11 [verify-x509-name] [server_J5g6aiN6FjSQkfjo] [name]
15 [verb] [1]

09:12:20.016 -- EVENT: RESOLVE
09:12:20.017 -- Contacting <ip-address:port> via UDP
09:12:20.018 -- EVENT: WAIT
09:12:20.020 -- Connecting to [DNS.name.org]:port (ip-address) via UDPv4

09:12:20.047 -- EVENT: CONNECTING
09:12:20.048 -- Tunnel Options:V4,dev-type tun,link-mtu 1570,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 1,cipher AES-256-CBC,auth SHA256,keysize 256,tls-auth,key-method 2,tls-client

09:12:20.049 -- Creds: UsernameEmpty/PasswordEmpty

09:12:20.049 -- Peer Info:
IV_GUI_VER=OC30Android
IV_VER=3.2
IV_PLAT=android
IV_NCP=2
IV_TCPNL=1
IV_PROTO=2
IV_LZO=1
IV_AUTO_SESS=1

09:12:20.246 -- VERIFY OK : depth=1
cert. version : 3
serial number : 94:A4:DA:2B:17:35:0D:AE
issuer name : CN=ChangeMe
subject name : CN=ChangeMe
issued on : 2017-12-23 01:35:17
expires on : 2027-12-21 01:35:17
signed using : RSA with SHA-256
RSA key size : 2048 bits
basic constraints : CA=true
key usage : Key Cert Sign, CRL Sign

09:12:20.257 -- VERIFY OK : depth=0
cert. version : 3
serial number : 01
issuer name : CN=ChangeMe
subject name : CN=server_J5g6aiN6FjSQkfjo
issued on : 2017-12-23 01:35:26
expires on : 2027-12-21 01:35:26
signed using : RSA with SHA-256
RSA key size : 2048 bits
basic constraints : CA=false
key usage : Digital Signature, Key Encipherment
ext key usage : TLS Web Server Authentication

09:13:00.409 -- Session invalidated: KEEPALIVE_TIMEOUT
09:13:00.410 -- Client terminated, restarting in 2000 ms...
-------------------

[Log Server]--------------------
Sun Sep 23 08:12:52 2018 193.152.33.42:63017 VERIFY ERROR: depth=0, error=CRL has expired: CN=pedrosc
Sun Sep 23 08:12:52 2018 193.152.33.42:63017 OpenSSL: error:14089086:SSL routines:ssl3_get_client_certificate:certificate verify failed
Sun Sep 23 08:12:52 2018 193.152.33.42:63017 TLS_ERROR: BIO read tls_read_plaintext error
Sun Sep 23 08:12:52 2018 193.152.33.42:63017 TLS Error: TLS object -> incoming plaintext read error
Sun Sep 23 08:12:52 2018 193.152.33.42:63017 TLS Error: TLS handshake failed
----------------------------------
Last edited by pedrosc1967 on Sun Sep 23, 2018 8:37 am, edited 4 times in total.

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 4880
Joined: Fri Jun 03, 2016 1:17 pm

Re: Ifrozen connection

Post by TinCanTech » Sat Sep 22, 2018 1:06 pm


pedrosc1967
OpenVpn Newbie
Posts: 2
Joined: Sat Sep 22, 2018 8:34 am

Re: Clients not completing connection

Post by pedrosc1967 » Sun Sep 23, 2018 8:37 am

Finally solved by opening port in router Firewall

Post Reply