Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
We'd be happy to help you, but please provide logs and config files.Dan87 wrote:Hi
Apologies, not sure what info is required for someone to give advice on this.
Have installed openVPN onto Rasbian, generated a key etc. Howeever when trying to login from the client (IOS), the connection is timing out.
Can anyone throw and light as to where to start looking and trouble shooting? I'm fairly tech savvy, but this makes me feel stupid!
Thanks
Dan
Code: Select all
2014-12-28 14:48:28 ----- OpenVPN Start -----
OpenVPN core 3.0 ios arm64 64-bit
2014-12-28 14:48:28 UNUSED OPTIONS
4 [resolv-retry] [infinite]
5 [nobind]
6 [persist-key]
7 [persist-tun]
8 [mute-replay-warnings]
13 [verb] [1]
14 [mute] [20]
2014-12-28 14:48:28 LZO-ASYM init swap=0 asym=0
2014-12-28 14:48:28 EVENT: RESOLVE
2014-12-28 14:48:29 Contacting 82.9.180.67:1194 via UDP
2014-12-28 14:48:29 EVENT: WAIT
2014-12-28 14:48:29 SetTunnelSocket returned 1
2014-12-28 14:48:29 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-28 14:48:38 Server poll timeout, trying next remote entry...
2014-12-28 14:48:38 EVENT: RECONNECTING
2014-12-28 14:48:38 LZO-ASYM init swap=0 asym=0
2014-12-28 14:48:38 EVENT: RESOLVE
2014-12-28 14:48:38 Contacting 82.9.180.67:1194 via UDP
2014-12-28 14:48:38 EVENT: WAIT
2014-12-28 14:48:38 SetTunnelSocket returned 1
2014-12-28 14:48:38 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-28 14:48:48 Server poll timeout, trying next remote entry...
2014-12-28 14:48:48 EVENT: RECONNECTING
2014-12-28 14:48:48 LZO-ASYM init swap=0 asym=0
2014-12-28 14:48:48 EVENT: RESOLVE
2014-12-28 14:48:48 Contacting 82.9.180.67:1194 via UDP
2014-12-28 14:48:48 EVENT: WAIT
2014-12-28 14:48:48 SetTunnelSocket returned 1
2014-12-28 14:48:48 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-28 14:48:58 Server poll timeout, trying next remote entry...
2014-12-28 14:48:58 EVENT: RECONNECTING
2014-12-28 14:48:58 LZO-ASYM init swap=0 asym=0
2014-12-28 14:48:58 EVENT: RESOLVE
2014-12-28 14:48:58 Contacting 82.9.180.67:1194 via UDP
2014-12-28 14:48:58 EVENT: WAIT
2014-12-28 14:48:58 SetTunnelSocket returned 1
2014-12-28 14:48:58 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-28 14:49:03 EVENT: DISCONNECTED
2014-12-28 14:49:03 Raw stats on disconnect:
BYTES_OUT : 756
PACKETS_OUT : 18
N_RECONNECT : 3
2014-12-28 14:49:03 Performance stats on disconnect:
CPU usage (microseconds): 40272
Network bytes per CPU second: 18772
Tunnel bytes per CPU second: 0
2014-12-28 14:49:03 ----- OpenVPN Stop -----
2014-12-28 14:52:46 ----- OpenVPN Start -----
OpenVPN core 3.0 ios arm64 64-bit
2014-12-28 14:52:46 UNUSED OPTIONS
4 [resolv-retry] [infinite]
5 [nobind]
6 [persist-key]
7 [persist-tun]
8 [mute-replay-warnings]
13 [verb] [1]
14 [mute] [20]
2014-12-28 14:52:46 LZO-ASYM init swap=0 asym=0
2014-12-28 14:52:46 EVENT: RESOLVE
2014-12-28 14:52:47 Contacting 82.9.180.67:1194 via UDP
2014-12-28 14:52:47 EVENT: WAIT
2014-12-28 14:52:47 SetTunnelSocket returned 1
2014-12-28 14:52:47 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-28 14:52:56 Server poll timeout, trying next remote entry...
2014-12-28 14:52:56 EVENT: RECONNECTING
2014-12-28 14:52:56 LZO-ASYM init swap=0 asym=0
2014-12-28 14:52:56 EVENT: RESOLVE
2014-12-28 14:52:56 Contacting 82.9.180.67:1194 via UDP
2014-12-28 14:52:56 EVENT: WAIT
2014-12-28 14:52:56 SetTunnelSocket returned 1
2014-12-28 14:52:56 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-28 14:53:06 Server poll timeout, trying next remote entry...
2014-12-28 14:53:06 EVENT: RECONNECTING
2014-12-28 14:53:06 LZO-ASYM init swap=0 asym=0
2014-12-28 14:53:06 EVENT: RESOLVE
2014-12-28 14:53:06 Contacting 82.9.180.67:1194 via UDP
2014-12-28 14:53:06 EVENT: WAIT
2014-12-28 14:53:06 SetTunnelSocket returned 1
2014-12-28 14:53:06 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-28 14:53:16 Server poll timeout, trying next remote entry...
2014-12-28 14:53:16 EVENT: RECONNECTING
2014-12-28 14:53:16 LZO-ASYM init swap=0 asym=0
2014-12-28 14:53:16 EVENT: RESOLVE
2014-12-28 14:53:16 Contacting 82.9.180.67:1194 via UDP
2014-12-28 14:53:16 EVENT: WAIT
2014-12-28 14:53:16 SetTunnelSocket returned 1
2014-12-28 14:53:16 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-28 14:53:26 Server poll timeout, trying next remote entry...
2014-12-28 14:53:26 EVENT: RECONNECTING
2014-12-28 14:53:26 LZO-ASYM init swap=0 asym=0
2014-12-28 14:53:26 EVENT: RESOLVE
2014-12-28 14:53:26 Contacting 82.9.180.67:1194 via UDP
2014-12-28 14:53:26 EVENT: WAIT
2014-12-28 14:53:26 SetTunnelSocket returned 1
2014-12-28 14:53:26 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-28 14:53:36 Server poll timeout, trying next remote entry...
2014-12-28 14:53:36 EVENT: RECONNECTING
2014-12-28 14:53:36 LZO-ASYM init swap=0 asym=0
2014-12-28 14:53:36 EVENT: RESOLVE
2014-12-28 14:53:36 Contacting 82.9.180.67:1194 via UDP
2014-12-28 14:53:36 EVENT: WAIT
2014-12-28 14:53:36 SetTunnelSocket returned 1
2014-12-28 14:53:36 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-28 14:53:46 EVENT: CONNECTION_TIMEOUT [ERR]
2014-12-28 14:53:46 EVENT: DISCONNECTED
2014-12-28 14:53:46 Raw stats on disconnect:
BYTES_OUT : 1260
PACKETS_OUT : 30
CONNECTION_TIMEOUT : 1
N_RECONNECT : 5
2014-12-28 14:53:46 Performance stats on disconnect:
CPU usage (microseconds): 36605
Network bytes per CPU second: 34421
Tunnel bytes per CPU second: 0
2014-12-28 14:53:46 EVENT: DISCONNECT_PENDING
2014-12-28 14:53:46 ----- OpenVPN Stop -----
2014-12-28 14:59:17 ----- OpenVPN Start -----
OpenVPN core 3.0 ios arm64 64-bit
2014-12-28 14:59:17 UNUSED OPTIONS
4 [resolv-retry] [infinite]
5 [nobind]
6 [persist-key]
7 [persist-tun]
8 [mute-replay-warnings]
13 [verb] [1]
14 [mute] [20]
2014-12-28 14:59:17 LZO-ASYM init swap=0 asym=0
2014-12-28 14:59:17 EVENT: RESOLVE
2014-12-28 14:59:19 Contacting 82.9.180.67:1194 via UDP
2014-12-28 14:59:19 EVENT: WAIT
2014-12-28 14:59:19 SetTunnelSocket returned 1
2014-12-28 14:59:19 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-28 14:59:27 Server poll timeout, trying next remote entry...
2014-12-28 14:59:27 EVENT: RECONNECTING
2014-12-28 14:59:27 LZO-ASYM init swap=0 asym=0
2014-12-28 14:59:27 EVENT: RESOLVE
2014-12-28 14:59:27 Contacting 82.9.180.67:1194 via UDP
2014-12-28 14:59:27 EVENT: WAIT
2014-12-28 14:59:27 SetTunnelSocket returned 1
2014-12-28 14:59:27 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-28 14:59:37 Server poll timeout, trying next remote entry...
2014-12-28 14:59:37 EVENT: RECONNECTING
2014-12-28 14:59:37 LZO-ASYM init swap=0 asym=0
2014-12-28 14:59:37 EVENT: RESOLVE
2014-12-28 14:59:37 Contacting 82.9.180.67:1194 via UDP
2014-12-28 14:59:37 EVENT: WAIT
2014-12-28 14:59:37 SetTunnelSocket returned 1
2014-12-28 14:59:37 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-28 14:59:47 Server poll timeout, trying next remote entry...
2014-12-28 14:59:47 EVENT: RECONNECTING
2014-12-28 14:59:47 LZO-ASYM init swap=0 asym=0
2014-12-28 14:59:47 EVENT: RESOLVE
2014-12-28 14:59:47 Contacting 82.9.180.67:1194 via UDP
2014-12-28 14:59:47 EVENT: WAIT
2014-12-28 14:59:47 SetTunnelSocket returned 1
2014-12-28 14:59:47 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-28 14:59:57 Server poll timeout, trying next remote entry...
2014-12-28 14:59:57 EVENT: RECONNECTING
2014-12-28 14:59:57 LZO-ASYM init swap=0 asym=0
2014-12-28 14:59:57 EVENT: RESOLVE
2014-12-28 14:59:57 Contacting 82.9.180.67:1194 via UDP
2014-12-28 14:59:57 EVENT: WAIT
2014-12-28 14:59:57 SetTunnelSocket returned 1
2014-12-28 14:59:57 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-28 15:00:07 Server poll timeout, trying next remote entry...
2014-12-28 15:00:07 EVENT: RECONNECTING
2014-12-28 15:00:07 LZO-ASYM init swap=0 asym=0
2014-12-28 15:00:07 EVENT: RESOLVE
2014-12-28 15:00:07 Contacting 82.9.180.67:1194 via UDP
2014-12-28 15:00:07 EVENT: WAIT
2014-12-28 15:00:07 SetTunnelSocket returned 1
2014-12-28 15:00:07 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-28 15:00:17 EVENT: CONNECTION_TIMEOUT [ERR]
2014-12-28 15:00:17 EVENT: DISCONNECTED
2014-12-28 15:00:17 Raw stats on disconnect:
BYTES_OUT : 1260
PACKETS_OUT : 30
CONNECTION_TIMEOUT : 1
N_RECONNECT : 5
2014-12-28 15:00:17 Performance stats on disconnect:
CPU usage (microseconds): 42633
Network bytes per CPU second: 29554
Tunnel bytes per CPU second: 0
2014-12-28 15:00:17 EVENT: DISCONNECT_PENDING
2014-12-28 15:00:17 ----- OpenVPN Stop -----Code: Select all
local 192.168.0.14 # SWAP THIS NUMBER WITH YOUR RASPBERRY PI IP ADDRESS
dev tun
proto udp #Some people prefer to use tcp. Don't change it if you don't know.
port 1194
ca /etc/openvpn/easy-rsa/keys/ca.crt
cert /etc/openvpn/easy-rsa/keys/Dan.crt # SWAP WITH YOUR CRT NAME
key /etc/openvpn/easy-rsa/keys/Dan.key # SWAP WITH YOUR KEY NAME
dh /etc/openvpn/easy-rsa/keys/dh2048.pem # If you changed to 2048, change that here!
server 10.8.0.0 255.255.255.0
# server and remote endpoints
ifconfig 10.8.0.1 10.8.0.2
# Add route to Client routing table for the OpenVPN Server
push "route 10.8.0.1 255.255.255.255"
# Add route to Client routing table for the OpenVPN Subnet
push "route 10.8.0.0 255.255.255.0"
# your local subnet
push "route 192.168.0.14 255.255.255.0" # SWAP THE IP NUMBER WITH YOUR RASPBERRY PI IP ADDRESS
# Set primary domain name server address to the SOHO Router
# If your router does not do DNS, you can use Google DNS 8.8.8.8
push "dhcp-option DNS 192.168.0.1" # This should already match your router address and not need to be changed.
# Override the Client default gateway by using 0.0.0.0/1 and
# 128.0.0.0/1 rather than 0.0.0.0/0. This has the benefit of
# overriding but not wiping out the original default gateway.
push "redirect-gateway def1"
client-to-client
duplicate-cn
keepalive 10 120
tls-auth /etc/openvpn/easy-rsa/keys/ta.key 0
cipher AES-128-CBC
comp-lzo
user nobody
group nogroup
persist-key
persist-tun
status /var/log/openvpn-status.log 20
log /var/log/openvpn.log
verb 1
Your VPN install is part of a LAN, rather than having a public IP. is this correct?local 192.168.0.14 # SWAP THIS NUMBER WITH YOUR RASPBERRY PI IP ADDRESS
Can you double check it's set to forward 1194 UDP? Double check on VPN server that it is indeed listening on 1194 UDP as well. It looks like the connection request is just not reaching the VPN server in the manner it needs to.Dan87 wrote:Hi Douglas
VPN is part of my my home LAN. My routers configured to forward to it.
Thanks in advance.
Dan
Code: Select all
2014-12-29 18:49:02 ----- OpenVPN Start -----
OpenVPN core 3.0 ios arm64 64-bit
2014-12-29 18:49:02 UNUSED OPTIONS
4 [resolv-retry] [infinite]
5 [nobind]
6 [persist-key]
7 [persist-tun]
8 [mute-replay-warnings]
13 [verb] [1]
14 [mute] [20]
2014-12-29 18:49:02 LZO-ASYM init swap=0 asym=0
2014-12-29 18:49:02 EVENT: RESOLVE
2014-12-29 18:49:02 Contacting 82.9.180.67:1194 via UDP
2014-12-29 18:49:02 EVENT: WAIT
2014-12-29 18:49:02 SetTunnelSocket returned 1
2014-12-29 18:49:02 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-29 18:49:12 Server poll timeout, trying next remote entry...
2014-12-29 18:49:12 EVENT: RECONNECTING
2014-12-29 18:49:12 LZO-ASYM init swap=0 asym=0
2014-12-29 18:49:12 EVENT: RESOLVE
2014-12-29 18:49:12 Contacting 82.9.180.67:1194 via UDP
2014-12-29 18:49:12 EVENT: WAIT
2014-12-29 18:49:12 SetTunnelSocket returned 1
2014-12-29 18:49:12 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-29 18:49:22 Server poll timeout, trying next remote entry...
2014-12-29 18:49:22 EVENT: RECONNECTING
2014-12-29 18:49:22 LZO-ASYM init swap=0 asym=0
2014-12-29 18:49:22 EVENT: RESOLVE
2014-12-29 18:49:22 Contacting 82.9.180.67:1194 via UDP
2014-12-29 18:49:22 EVENT: WAIT
2014-12-29 18:49:22 SetTunnelSocket returned 1
2014-12-29 18:49:22 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-29 18:49:32 Server poll timeout, trying next remote entry...
2014-12-29 18:49:32 EVENT: RECONNECTING
2014-12-29 18:49:32 LZO-ASYM init swap=0 asym=0
2014-12-29 18:49:32 EVENT: RESOLVE
2014-12-29 18:49:32 Contacting 82.9.180.67:1194 via UDP
2014-12-29 18:49:32 EVENT: WAIT
2014-12-29 18:49:32 SetTunnelSocket returned 1
2014-12-29 18:49:32 Connecting to danmajor.ddns.net:1194 (82.9.180.67) via UDPv4
2014-12-29 18:49:36 EVENT: CONNECTING
2014-12-29 18:49:36 Tunnel Options:V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 1,cipher AES-128-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-client
2014-12-29 18:49:36 Peer Info:
IV_GUI_VER=net.openvpn.connect.ios 1.0.5-177
IV_VER=3.0
IV_PLAT=ios
IV_NCP=1
IV_LZO=1
2014-12-29 18:49:40 VERIFY OK: depth=1
cert. version : 3
serial number : CF:8D:B0:0B:E7:F6:D8:EF
issuer name : C=US, ST=CA, L=SanFrancisco, O=Fort-Funston, OU=changeme, CN=changeme, ??=changeme, emailAddress=mail@host.domain
subject name : C=US, ST=CA, L=SanFrancisco, O=Fort-Funston, OU=changeme, CN=changeme, ??=changeme, emailAddress=mail@host.domain
issued on : 2014-12-29 16:54:53
expires on : 2024-12-26 16:54:53
signed using : RSA with SHA1
RSA key size : 1024 bits
basic constraints : CA=true
2014-12-29 18:49:40 VERIFY OK: depth=0
cert. version : 3
serial number : 01
issuer name : C=US, ST=CA, L=SanFrancisco, O=Fort-Funston, OU=changeme, CN=changeme, ??=changeme, emailAddress=mail@host.domain
subject name : C=US, ST=CA, L=SanFrancisco, O=Fort-Funston, OU=changeme, CN=Dan, ??=changeme, emailAddress=mail@host.domain
issued on : 2014-12-29 16:55:40
expires on : 2024-12-26 16:55:40
signed using : RSA with SHA1
RSA key size : 1024 bits
basic constraints : CA=false
cert. type : SSL Server
key usage : Digital Signature, Key Encipherment
ext key usage : TLS Web Server Authentication
2014-12-29 18:49:41 SSL Handshake: TLSv1.0/TLS-DHE-RSA-WITH-AES-256-CBC-SHA
2014-12-29 18:49:41 Session is ACTIVE
2014-12-29 18:49:41 EVENT: GET_CONFIG
2014-12-29 18:49:41 Sending PUSH_REQUEST to server...
2014-12-29 18:49:42 Sending PUSH_REQUEST to server...
2014-12-29 18:49:42 OPTIONS:
0 [route] [10.8.0.1] [255.255.255.255]
1 [route] [10.8.0.0] [255.255.255.0]
2 [route] [192.168.0.14] [255.255.255.0]
3 [dhcp-option] [DNS] [192.168.0.1]
4 [redirect-gateway] [def1]
5 [route] [10.8.0.0] [255.255.255.0]
6 [topology] [net30]
7 [ping] [10]
8 [ping-restart] [120]
9 [ifconfig] [10.8.0.10] [10.8.0.9]
2014-12-29 18:49:42 LZO-ASYM init swap=0 asym=0
2014-12-29 18:49:42 EVENT: ASSIGN_IP
2014-12-29 18:49:42 Error parsing IPv4 route: [route] [192.168.0.14] [255.255.255.0] : tun_prop_error: route is not canonical
2014-12-29 18:49:42 Connected via tun
2014-12-29 18:49:42 EVENT: CONNECTED @danmajor.ddns.net:1194 (82.9.180.67) via /UDPv4 on tun/10.8.0.10/
2014-12-29 18:49:42 NET Internet:ReachableViaWWAN/WR t----l-
2014-12-29 18:49:42 NET WiFi:NotReachable/WR t------
2014-12-29 18:49:42 SetStatus Connected