TLS Error: TLS handshake failed

Business solution to host your own OpenVPN server with web management interface and bundled clients.
Post Reply
Krl
OpenVpn Newbie
Posts: 1
Joined: Wed May 29, 2013 2:42 pm

TLS Error: TLS handshake failed

Post by Krl » Wed May 29, 2013 2:55 pm

Hi,

This is the first time I use OpenVPN, but I can't get it work. When I try to connect to a server, I get:
$ sudo openvpn --config "UK London.ovpn" --ca /etc/openvpn/ca.crt
Wed May 29 15:16:43 2013 OpenVPN 2.3.1 x86_64-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [eurephia] [MH] [IPv6] built on May 6 2013
Enter Auth Username: ******
Enter Auth Password:
Wed May 29 15:16:55 2013 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Wed May 29 15:16:55 2013 UDPv4 link local: [undef]
Wed May 29 15:16:55 2013 UDPv4 link remote: [AF_INET]37.130.227.140:1194
Wed May 29 15:17:55 2013 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Wed May 29 15:17:55 2013 TLS Error: TLS handshake failed
I tried to use network-manager (I'm on fedora), with no luck:
sudo tail -f /var/log/messages | grep -i networkmanager
May 29 14:57:16 Carl-Fedora NetworkManager[641]: <info> Starting VPN service 'openvpn'...
May 29 14:57:16 Carl-Fedora NetworkManager[641]: <info> VPN service 'openvpn' started (org.freedesktop.NetworkManager.openvpn), PID 4547
May 29 14:57:16 Carl-Fedora NetworkManager[641]: <info> VPN service 'openvpn' appeared; activating connections
May 29 14:57:16 Carl-Fedora NetworkManager[641]: <info> VPN plugin state changed: init (1)
May 29 14:57:16 Carl-Fedora NetworkManager[641]: <info> VPN plugin state changed: starting (3)
May 29 14:57:16 Carl-Fedora NetworkManager[641]: <info> VPN connection 'Private Internet Access SSL' (Connect) reply received.
May 29 14:57:17 Carl-Fedora NetworkManager[641]: <warn> VPN plugin failed: 1
May 29 14:57:17 Carl-Fedora NetworkManager[641]: <info> VPN plugin state changed: stopped (6)
May 29 14:57:17 Carl-Fedora NetworkManager[641]: <info> VPN plugin state change reason: 0
May 29 14:57:17 Carl-Fedora NetworkManager[641]: <info> Policy set 'System p3p1' (p3p1) as default for IPv4 routing and DNS.
May 29 14:57:17 Carl-Fedora NetworkManager[641]: <warn> error disconnecting VPN: Could not process the request because no VPN connection was active.
May 29 14:57:21 Carl-Fedora NetworkManager[641]: <info> VPN service 'openvpn' disappeared
$ cat UK\ London.ovpn
client
dev tun
proto udp
remote uk-london.privateinternetaccess.com 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
tls-client
remote-cert-tls server
auth-user-pass
comp-lzo
verb 1
reneg-sec 0
I'm using university's network, I don't know if it could be the reason why it doesn't work..

I also tried on Windows, same result using the OpenVPN gui and following my vpn provider instructions
Top
rotor
OpenVpn Newbie
Posts: 1
Joined: Mon Sep 30, 2013 7:19 am

Re: TLS Error: TLS handshake failed

Post by rotor » Mon Sep 30, 2013 7:24 am

I have the same problem. I'm not using a router, only an ethernet connection.

Code: Select all

Mon Sep 30 08:44:44 2013 OpenVPN 2.3.2 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [eurephia] [IPv6] built on Aug 22 2013
Mon Sep 30 08:44:44 2013 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Mon Sep 30 08:44:44 2013 Need hold release from management interface, waiting...
Mon Sep 30 08:44:45 2013 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Mon Sep 30 08:44:45 2013 MANAGEMENT: CMD 'state on'
Mon Sep 30 08:44:45 2013 MANAGEMENT: CMD 'log all on'
Mon Sep 30 08:44:45 2013 MANAGEMENT: CMD 'hold off'
Mon Sep 30 08:44:45 2013 MANAGEMENT: CMD 'hold release'
Mon Sep 30 08:44:45 2013 Control Channel Authentication: using 'keys/tls-auth.key' as a OpenVPN static key file
Mon Sep 30 08:44:45 2013 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Sep 30 08:44:45 2013 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Sep 30 08:44:45 2013 Socket Buffers: R=[8192->8192] S=[64512->64512]
Mon Sep 30 08:44:45 2013 MANAGEMENT: >STATE:1380523485,RESOLVE,,,
Mon Sep 30 08:44:45 2013 UDPv4 link local: [undef]
Mon Sep 30 08:44:45 2013 UDPv4 link remote: [AF_INET]185.21.216.185:1194
Mon Sep 30 08:44:45 2013 MANAGEMENT: >STATE:1380523485,WAIT,,,
Mon Sep 30 08:45:45 2013 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Sep 30 08:45:45 2013 TLS Error: TLS handshake failed
Mon Sep 30 08:45:45 2013 SIGUSR1[soft,tls-error] received, process restarting
Mon Sep 30 08:45:45 2013 MANAGEMENT: >STATE:1380523545,RECONNECTING,tls-error,,
Mon Sep 30 08:45:45 2013 Restart pause, 2 second(s)
Mon Sep 30 08:45:47 2013 Socket Buffers: R=[8192->8192] S=[64512->64512]
Mon Sep 30 08:45:47 2013 MANAGEMENT: >STATE:1380523547,RESOLVE,,,
Mon Sep 30 08:45:47 2013 UDPv4 link local: [undef]
Mon Sep 30 08:45:47 2013 UDPv4 link remote: [AF_INET]185.21.216.185:1194
Mon Sep 30 08:45:47 2013 MANAGEMENT: >STATE:1380523547,WAIT,,,
When I tethered my PC to my phone's connection it worked fine, so it isn't my key or config not working with the server.

Any suggestions? Also using university network.
Top
Post Reply

Return to “The OpenVPN Access Server”