I could not connect OpenVPN with one of my connection, I test it in many case and put the details of my works here for OpenVPN team, I wish the problem solved or atleast we find a way to know what is exactly come from.
I got this error at client site
TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Here is complete error:
Attempting to establish TCP connection with myserverip:80
TCP connection established with myserverip:80
TCPv4_CLIENT link local: [undef]
TCPv4_CLIENT link remote: myserverip:80
TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
TLS Error: TLS handshake failed
TLS error (check_tls_errors_co), restarting
Detailed information and all case that I tested:
- Server is linux – CentOS
Client is Winodws 7; all firewall turned off; antivirus turned off; also I check it in windows XP too
I test it with ADLS connection(no issue) and my WiMax connection (got the TLS Error)
I have ADSL connections and WiMax connection, with ADSL I have no problem and connect without any problem.
I can reach the server because:
I can connect to server via PPTP protocol with ADSL connection and WiMax without any problem
I have no port forwarding issue because:
I use port 80; also I check with DMZ, also I check with set WiMax modem to bridge and disable NAT. in all case could not connect with OpenVPN but I connect with PPTP.
I wonder is my ISP do something!, they told they don’t filter anything but even so I use “tls-auth ta.key” and also use port 80, how can they disable it?
Also I test with 443 port, I test with UDP too but same error.
I can use PPTP for VPN but I really like to know what the issue is come from? I like to know is really my ISP can do something to block OpenVPN with port 80 and “tls-auth ta.key”?
Here is client config:
client
dev tun
proto tcp
remote myserverip 80
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert madnik7.crt
key madnik7.key
ns-cert-type server
tls-auth ta.key 1
;comp-lzo
verb 3
mute 20
