Windows Connection Problem

[rhrackman]

Hi all,

I'm a bit of a newbie with OpenVPN. I manage to connect to the OpenVPN server on my Firewalla on iOS, but when I try to connect to it via Windows client I get an request error.

The log on the client reads:

Code: Select all

1/29/2020, 10:30:05 AM OpenVPN core 3.git::15c71c44 win x86_64 64-bit PT_PROXY built on Dec 19 2019 18:01:12
⏎1/29/2020, 10:30:05 AM Frame=512/2048/512 mssfix-ctrl=1250
⏎1/29/2020, 10:30:05 AM UNUSED OPTIONS
4 [resolv-retry] [infinite] 
5 [nobind] 
6 [persist-key] 
7 [persist-tun] 
10 [mute-replay-warnings] 
13 [verb] [1] 
14 [mute] [20] 
⏎1/29/2020, 10:30:05 AM EVENT: RESOLVE ⏎1/29/2020, 10:30:05 AM Contacting 68.204.73.241:1194 via UDP
⏎1/29/2020, 10:30:05 AM Connecting to [080k77ru8g.d.firewalla.com]:1194 (68.204.73.241) via UDPv4
⏎1/29/2020, 10:30:05 AM EVENT: WAIT ⏎1/29/2020, 10:30:06 AM Tunnel Options:V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 1,cipher AES-128-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-client
⏎1/29/2020, 10:30:06 AM Creds: UsernameEmpty/PasswordEmpty
⏎1/29/2020, 10:30:06 AM Peer Info:
IV_GUI_VER=OCmacOS_3.1.1-378
IV_VER=3.git::15c71c44
IV_PLAT=win
IV_NCP=2
IV_TCPNL=1
IV_PROTO=2
IV_LZO_STUB=1
IV_COMP_STUB=1
IV_COMP_STUBv2=1
IV_AUTO_SESS=1

⏎1/29/2020, 10:30:06 AM EVENT: CONNECTING ⏎1/29/2020, 10:30:06 AM VERIFY OK : depth=1
cert. version     : 3
serial number     : F1:0F:2B:4C:BA:6C:64:AD
issuer name       : C=CO, ST=ST, L=CITY, O=ORG, OU=ORG-UNIT, CN=COMMON-NAME, ??=NAME, emailAddress=EMAIL
subject name      : C=CO, ST=ST, L=CITY, O=ORG, OU=ORG-UNIT, CN=COMMON-NAME, ??=NAME, emailAddress=EMAIL
issued  on        : 2020-01-29 00:10:50
expires on        : 2030-01-26 00:10:50
signed using      : RSA with SHA-256
RSA key size      : 1024 bits
basic constraints : CA=true

⏎1/29/2020, 10:30:06 AM VERIFY OK : depth=0
cert. version     : 3
serial number     : 01
issuer name       : C=CO, ST=ST, L=CITY, O=ORG, OU=ORG-UNIT, CN=COMMON-NAME, ??=NAME, emailAddress=EMAIL
subject name      : C=US, ST=CA, L=SanFrancisco, O=Fort-Funston, OU=MyOrganizationalUnit, CN=server, ??=EasyRSA, emailAddress=me@myhost.mydomain
issued  on        : 2020-01-29 00:10:50
expires on        : 2030-01-26 00:10:50
signed using      : RSA with SHA-256
RSA key size      : 1024 bits
basic constraints : CA=false
subject alt name  : server
cert. type        : SSL Server
key usage         : Digital Signature, Key Encipherment
ext key usage     : TLS Web Server Authentication

⏎1/29/2020, 10:30:07 AM SSL Handshake: TLSv1.2/TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384
⏎1/29/2020, 10:30:07 AM Session is ACTIVE
⏎1/29/2020, 10:30:07 AM EVENT: GET_CONFIG ⏎1/29/2020, 10:30:07 AM Sending PUSH_REQUEST to server...
⏎1/29/2020, 10:30:07 AM EVENT: ASSIGN_IP ⏎1/29/2020, 10:30:07 AM OPTIONS:
0 [dhcp-option] [DNS] [192.168.1.1] 
1 [redirect-gateway] [def1] 
2 [route] [10.48.144.0] [255.255.255.0] 
3 [topology] [net30] 
4 [ping] [10] 
5 [ping-restart] [120] 
6 [comp-lzo] [no] 
7 [ifconfig] [10.48.144.10] [10.48.144.9] 
8 [peer-id] [1] 
9 [cipher] [AES-256-GCM] 

⏎1/29/2020, 10:30:07 AM PROTOCOL OPTIONS:
  cipher: AES-256-GCM
  digest: SHA1
  compress: LZO_STUB
  peer ID: 1
⏎1/29/2020, 10:30:07 AM CAPTURED OPTIONS:
Session Name: 080k77ru8g.d.firewalla.com
Layer: OSI_LAYER_3
Remote Address: 68.204.73.241
Tunnel Addresses:
  10.48.144.10/30 -> 10.48.144.9 [net30]
Reroute Gateway: IPv4=1 IPv6=0 flags=[ ENABLE REROUTE_GW DEF1 IPv4 ]
Block IPv6: no
Add Routes:
  10.48.144.0/24
Exclude Routes:
DNS Servers:
  192.168.1.1
Search Domains:

⏎1/29/2020, 10:30:07 AM SetupClient: transmitting tun setup list to \\.\pipe\agent_ovpnconnect
{
	"confirm_event" : "d80a000000000000",
	"destroy_event" : "1408000000000000",
	"tun" : 
	{
		"adapter_domain_suffix" : "",
		"add_routes" : 
		[
			{
				"address" : "10.48.144.0",
				"gateway" : "",
				"ipv6" : false,
				"metric" : -1,
				"net30" : false,
				"prefix_length" : 24
			}
		],
		"block_ipv6" : false,
		"dns_servers" : 
		[
			{
				"address" : "192.168.1.1",
				"ipv6" : false
			}
		],
		"layer" : 3,
		"mtu" : 0,
		"remote_address" : 
		{
			"address" : "68.204.73.241",
			"ipv6" : false
		},
		"reroute_gw" : 
		{
			"flags" : 275,
			"ipv4" : true,
			"ipv6" : false
		},
		"route_metric_default" : -1,
		"session_name" : "080k77ru8g.d.firewalla.com",
		"tunnel_address_index_ipv4" : 0,
		"tunnel_address_index_ipv6" : -1,
		"tunnel_addresses" : 
		[
			{
				"address" : "10.48.144.10",
				"gateway" : "10.48.144.9",
				"ipv6" : false,
				"metric" : -1,
				"net30" : true,
				"prefix_length" : 30
			}
		]
	}
}
POST np://[\\.\pipe\agent_ovpnconnect]/tun-setup : 400 Bad Request
TAP ADAPTERS:
guid='{4BDF5441-5F73-49A1-85C9-C371D07ABD14}' index=15 name='Local Area Connection 2'
Open TAP device "" PATH="" FAILED
Destroyed previous TAP instance due to exception
cannot acquire TAP handle
⏎1/29/2020, 10:30:07 AM TUN Error: ovpnagent: request error
⏎1/29/2020, 10:30:07 AM Client exception in transport_recv: tun_exception: not connected
⏎1/29/2020, 10:30:07 AM EVENT: TUN_SETUP_FAILED ovpnagent: request error⏎1/29/2020, 10:30:07 AM EVENT: DISCONNECTED ⏎

Any ideas where the failure is?

Regards,
-Jose Corpuz

[TinCanTech]

OpenVPN core 3.git::15c71c44 win x86_64 64-bit

Even Firewalla say to use OpenVPN-Community edition:
https://openvpn.net/community-downloads/

[rhrackman]

Thank you for the information. I must have misread it.

[thompsonmax]

OpenVPN core 3.git::15c71c44 win x86_64 64-bit

Even Firewalla say to use OpenVPN-Community edition:
https://openvpn.net/community-downloads/

Hello there. Sometimes I have the same problem, thanks for the useful information