OpenVPN Support Forum

Community Support Forum
https://forums.openvpn.net/

Getting TLS Error: TLS Handshake Failed

https://forums.openvpn.net/viewtopic.php?t=16264

Page 1 of 1

Getting TLS Error: TLS Handshake Failed

Posted: Tue Jul 01, 2014 3:50 am
by whatintheworld
I'm setting up a Raspberry Pi-based VPN using OpenVPN and this tutorial:
Part 1:http://readwrite.com/2014/04/10/raspber ... SwDV4kCHNC
Part 2:http://readwrite.com/2014/04/11/buildin ... RWL7dtf3bn I'm at the point of running the client software, and I'm getting a TLS Error: TLS Handshake Failed. I've looked at OpenVPN's website for help, (This one: http://openvpn.net/index.php/open-sourc ... ivity.html in particular) but I seem to have done everything. Any suggestions?

Client setup:

Code: Select all

client
    dev tun
    proto udp
    remote [PUBLIC IP] 1194
    resolv-retry infinite
    nobind
    persist-key
    persist-tun
    mute-replay-warnings
    ns-cert-type server
    key-direction 1
    cipher AES-128-CBC
    comp lzo
    verb 1
    mute 20
firewall-openvpn-rules.sh:

Code: Select all

  #!/bin/sh 
    iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j SNAT --to-source [IP ADDRESS]
server.conf:

Code: Select all

local [IP ADDRESS]
dev tun 
proto udp #Some people prefer to use tcp. Don't change it if you don't know.
port 1194 
ca /etc/openvpn/easy-rsa/keys/ca.crt 
cert /etc/openvpn/easy-rsa/keys/[crtname].crt
key /etc/openvpn/easy-rsa/keys/[servername].key 
dh /etc/openvpn/easy-rsa/keys/dh2048.pem # If you changed to 2048, change that here!
server 10.8.0.0 255.255.255.0 
ifconfig 10.8.0.1 10.8.0.2 
push "route 10.8.0.1 255.255.255.255" 
push "route 10.8.0.0 255.255.255.0" 
push "route [IP ADDRESS] 255.255.255.0" 
push "dhcp-option DNS 192.168.2.1" # This should already match your router address and not need to be changed.
push "redirect-gateway def1" 
client-to-client 
duplicate-cn 
keepalive 10 120 
tls-auth /etc/openvpn/easy-rsa/keys/ta.key 0 
cipher AES-128-CBC 
comp-lzo 
user nobody 
group nogroup 
persist-key 
persist-tun 
status /var/log/openvpn-status.log 20 
log /var/log/openvpn.log 
verb 1
Error Message:
Image

Re: Getting TLS Error: TLS Handshake Failed

Posted: Tue Jul 01, 2014 5:21 pm
by whatintheworld
I removed the four lines from the server.conf and fixed the comp-lzo issue and rebooted. I haven't changed the iptables rule yet, but I tried to access the VPN again using the OpenVPN client and still got the error. Would changing the iptables rule help?
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/