[olog]
Sat Oct 9 02:01:20 2021 OpenVPN 2.4.3 arm-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 29 2020
Sat Oct 9 02:01:20 2021 library versions: OpenSSL 1.0.2n 7 Dec 2017, LZO 2.06
Sat Oct 9 02:01:20 2021 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Sat Oct 9 02:01:20 2021 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sat Oct 9 02:01:20 2021 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sat Oct 9 02:01:20 2021 TCP/UDP: Preserving recently used remote address: [AF_INET]x.x.x.x:1194
Sat Oct 9 02:01:20 2021 Socket Buffers: R=[163840->163840] S=[163840->163840]
Sat Oct 9 02:01:20 2021 UDP link local: (not bound)
Sat Oct 9 02:01:20 2021 UDP link remote: [AF_INET]x.x.x.x:1194
Sat Oct 9 02:02:21 2021 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sat Oct 9 02:02:21 2021 TLS Error: TLS handshake failed
Sat Oct 9 02:02:21 2021 SIGUSR1[soft,tls-error] received, process restarting
Sat Oct 9 02:02:21 2021 Restart pause, 5 second(s)
Sat Oct 9 02:02:26 2021 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
[/olog]
Here is my server.ovpn:
server.ovpn
port 1194
proto udp
dev tun
ca ca.crt
cert mrtuxVPN.crt
key mrtuxVPN.key # This file should be kept secret
dh dh.pem
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
keepalive 10 120
tls-auth ta_new.key 0 # This file is secret
cipher AES-256-GCM
persist-key
persist-tun
status openvpn-status.log
verb 3
explicit-exit-notify 1
proto udp
dev tun
ca ca.crt
cert mrtuxVPN.crt
key mrtuxVPN.key # This file should be kept secret
dh dh.pem
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
keepalive 10 120
tls-auth ta_new.key 0 # This file is secret
cipher AES-256-GCM
persist-key
persist-tun
status openvpn-status.log
verb 3
explicit-exit-notify 1
And my client.ovpn:
client.ovpn
client
dev tun
proto udp
remote my-server-2 1194
resolv-retry infinite
nobind
persist-key
persist-tun
<ca>
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
-----END PRIVATE KEY-----
</key>
remote-cert-tls server
tls-auth [inline] 1
<tls-auth>
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
-----END OpenVPN Static key V1-----
</tls-auth>
cipher AES-256-GCM
verb 3
dev tun
proto udp
remote my-server-2 1194
resolv-retry infinite
nobind
persist-key
persist-tun
<ca>
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
-----END PRIVATE KEY-----
</key>
remote-cert-tls server
tls-auth [inline] 1
<tls-auth>
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
-----END OpenVPN Static key V1-----
</tls-auth>
cipher AES-256-GCM
verb 3
I've checked everything in:
https://openvpn.net/faq/tls-error-tls-k ... nectivity/
Any ideas will be greatly appreciated.