Boa noite
Instalei e gerei os certificados, quer do servidor (windows 2008 server) quer do posto.
Quando corro no servidor fica assim:
--------------------------------------------------------------------------------------------------------
Mon May 21 23:28:35 2012 OpenVPN 2.0.9 Win32-MinGW [SSL] [LZO] built on Oct 1 2006
Mon May 21 23:28:35 2012 LZO compression initialized
Mon May 21 23:28:35 2012 TAP-WIN32 device [Ligação de Area Local 2] opened: \\.\Global\{6BE99D1F-91EB-4789-8CCB-178749DD2D8C}.tap
Mon May 21 23:28:35 2012 Notified TAP-Win32 driver to set a DHCP IP/netmask of 10.0.0.1/255.255.255.0 on interface {6BE99D1F-91EB-4789-8CCB-178749DD2D8C} [DHCP-serv: 10.0.0.0, lease-time: 31536000]
Mon May 21 23:28:35 2012 Successful ARP Flush on interface [17] {6BE99D1F-91EB-4789-8CCB-178749DD2D8C}
Mon May 21 23:28:35 2012 UDPv4 link local (bound): [undef]:5000
Mon May 21 23:28:35 2012 UDPv4 link remote: [undef]
--------------------------------------------------------------------------------------------------------
no posto dá esta mensagem
---------------------------------------------------------------------------------------------------------
Mon May 21 12:42:30 2012 OpenVPN 2.2.2 Win32-MSVC++ [SSL] [LZO2] [PKCS11] built on Dec 15 2011
Mon May 21 12:42:30 2012 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Mon May 21 12:42:30 2012 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon May 21 12:42:30 2012 LZO compression initialized
Mon May 21 12:42:31 2012 TAP-WIN32 device [Ligação de Área Local 2] opened: \\.\Global\{0430A302-4615-436B-86EA-A1DFFFC3E8FD}.tap
Mon May 21 12:42:31 2012 Notified TAP-Win32 driver to set a DHCP IP/netmask of 10.0.0.1/255.255.255.0 on interface {0430A302-4615-436B-86EA-A1DFFFC3E8FD} [DHCP-serv: 10.0.0.0, lease-time: 31536000]
Mon May 21 12:42:31 2012 UDPv4 link local (bound): [undef]:5001
Mon May 21 12:42:31 2012 UDPv4 link remote: 85.246.52.72:5001
Mon May 21 12:43:31 2012 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon May 21 12:43:31 2012 TLS Error: TLS handshake failed
Mon May 21 12:43:31 2012 SIGUSR1[soft,tls-error] received, process restarting
--------------------------------------------------------------------------------------------------------
No posto fiz correr outra configuração de conecção a outro servidor, e ele faz a ligação.
Utilizo a mesma porta, o mesmo conjuntomde IPs,
Não sei onde estou a errar, alguem me pode ajudar?
erro de TLS Key
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
-
janjust
- Forum Team
- Posts: 2703
- Joined: Fri Aug 20, 2010 2:57 pm
- Location: Amsterdam
- Contact:
Re: erro de TLS Key
Hi Mario,
usually the messages on this forum are in English, but I can read Portugese ... I'll respond on English, however.
The message you are seeing "TLS key negotiation failed to occur"
usually occurs when there's a firewall blocking access . Check the firewall on the server to ensure that access to the OpenVPN port is allowed (UDP 85.246.52.72:5001 in your case)
usually the messages on this forum are in English, but I can read Portugese ... I'll respond on English, however.
The message you are seeing "TLS key negotiation failed to occur"
usually occurs when there's a firewall blocking access . Check the firewall on the server to ensure that access to the OpenVPN port is allowed (UDP 85.246.52.72:5001 in your case)