My Setup is as follows:
Hardware: Lenovo TS140
Software:Xenserver 7.5 64bit with one physical network interface connected on this run various Virtual maschines ,one of which is a fresh Debian 10.9 install (i also tried ubuntu 20 .04 lts with same result ) , the Debian has one virtual interface assigned .
I set up port forwarding for 1194 on my routers.
I set up promiscuous mode according to this tutorial : https://support.citrix.com/article/CTX121729 i also added promiscous flag to the debian interface in the vm.
I have opened port 1194 on my notebook client windows firewall for outbound and inbound traffic .
I installed openvpn according to this tutorial :
https://www.cyberciti.biz/faq/debian-10 ... 5-minutes/
It worked with the basic configuration i could connect without problem.
I tried this tutorials for bridging :
https://www.emaculation.com/doku.php/br ... rver_setup
https://openvpn.net/community-resources ... -bridging/
https://openvpn.net/community-resources ... -bridging/
I edited the client configuration according to the tutorial.
Notes: after the bridging tutorial complete there is no internet connection on the debian server, which i did not understand why.
I tried it multiple times on ubuntu and debian , i had a tought that the tutorials may not be uptodate and adjusted accordingly and sourced from multiple tutorials of course on a fresh try all with no avail always the same error. I Also consequently tried each of the tutorials seperate with the same result .
Current Server Configuration:
Landscape for which i need layer 2 vpn acces from the internet trought the routers .
Log with tls error on the client which is not a part of the landscape (from internet ).
This is my SERVER /var/log/syslog for the relevant time period :
Code: Select all
May 28 21:52:02 ovpn systemd-timesyncd[314]: Timed out waiting for reply from 86.59.80.170:123 (0.debian.pool.ntp.org).
May 28 21:52:12 ovpn systemd-timesyncd[314]: Timed out waiting for reply from 193.171.23.163:123 (0.debian.pool.ntp.org).
May 28 21:52:22 ovpn systemd-timesyncd[314]: Timed out waiting for reply from 83.137.41.12:123 (0.debian.pool.ntp.org).
May 28 21:52:33 ovpn systemd-timesyncd[314]: Timed out waiting for reply from 141.255.175.253:123 (0.debian.pool.ntp.org).
May 28 21:52:48 ovpn systemd-timesyncd[314]: Timed out waiting for reply from 91.206.8.70:123 (1.debian.pool.ntp.org).
May 28 21:52:58 ovpn systemd-timesyncd[314]: Timed out waiting for reply from 131.130.251.107:123 (1.debian.pool.ntp.org).
May 28 21:53:08 ovpn systemd-timesyncd[314]: Timed out waiting for reply from 144.76.197.108:123 (1.debian.pool.ntp.org).
May 28 21:53:19 ovpn systemd-timesyncd[314]: Timed out waiting for reply from 85.237.30.84:123 (1.debian.pool.ntp.org).
May 28 21:53:29 ovpn systemd-timesyncd[314]: Timed out waiting for reply from 91.206.8.36:123 (2.debian.pool.ntp.org).
May 28 21:53:39 ovpn systemd-timesyncd[314]: Timed out waiting for reply from 91.206.8.70:123 (2.debian.pool.ntp.org).
May 28 21:53:49 ovpn systemd-timesyncd[314]: Timed out waiting for reply from 83.68.137.76:123 (2.debian.pool.ntp.org).
May 28 21:54:00 ovpn systemd-timesyncd[314]: Timed out waiting for reply from 91.206.8.34:123 (2.debian.pool.ntp.org).
May 28 21:54:13 ovpn systemd-timesyncd[314]: Timed out waiting for reply from 91.206.8.36:123 (3.debian.pool.ntp.org).
May 28 21:54:23 ovpn systemd-timesyncd[314]: Timed out waiting for reply from 91.206.8.34:123 (3.debian.pool.ntp.org).
May 28 21:54:33 ovpn systemd-timesyncd[314]: Timed out waiting for reply from 86.59.113.124:123 (3.debian.pool.ntp.org).
May 28 21:54:44 ovpn systemd-timesyncd[314]: Timed out waiting for reply from 185.144.161.170:123 (3.debian.pool.ntp.org).
May 28 21:55:03 ovpn ovpn-server[1464]: 91.115.153.105:51782 TLS: Initial packet from [AF_INET]91.115.153.105:51782, sid=93c7d7c1 603601dd
May 28 21:56:03 ovpn ovpn-server[1464]: 91.115.153.105:51782 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
May 28 21:56:03 ovpn ovpn-server[1464]: 91.115.153.105:51782 TLS Error: TLS handshake failed
May 28 21:56:03 ovpn ovpn-server[1464]: 91.115.153.105:51782 SIGUSR1[soft,tls-error] received, client-instance restarting
May 28 21:56:08 ovpn ovpn-server[1464]: 91.115.153.105:65355 TLS: Initial packet from [AF_INET]91.115.153.105:65355, sid=9fae4b73 9a5325d4
May 28 21:57:08 ovpn ovpn-server[1464]: 91.115.153.105:65355 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
May 28 21:57:08 ovpn ovpn-server[1464]: 91.115.153.105:65355 TLS Error: TLS handshake failed
May 28 21:57:08 ovpn ovpn-server[1464]: 91.115.153.105:65355 SIGUSR1[soft,tls-error] received, client-instance restarting
May 28 22:00:04 ovpn org.gnome.Shell.desktop[815]: libinput error: client bug: timer event5 debounce: offset negative (-11ms)
May 28 22:00:04 ovpn org.gnome.Shell.desktop[815]: libinput error: client bug: timer event5 debounce short: offset negative (-25ms)
May 28 22:00:08 ovpn org.gnome.Shell.desktop[815]: libinput error: client bug: timer event5 debounce short: offset negative (-2ms)
Im have completly given up hope to do this on my own and i beg for assitance.
I have snapshots of the debian maschine with basic configuration openvpn working and before so i can revert to any state necessary
and im willing to to provide all information necessary and do all what is asked of me. I really would like and need to get this to working as im a student working for a small company which cannot afford any paid local VPN software.
Marek Stepan