TLS Error: reading acknowledgement record from packet

Need help configuring your VPN? Just post here and you'll get that help.
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
xarlamp
OpenVpn Newbie
Posts: 1
Joined: Tue May 15, 2018 3:08 pm

TLS Error: reading acknowledgement record from packet

Post by xarlamp » Tue May 15, 2018 3:21 pm

Hello, i'm trying to setup server on DigitalOcean VPN.
But somewher taked wrong turn.
Now all i got is error: TLS Error: reading acknowledgement record from packet

i have server.conf:
server.conf

port 1194
proto tcp
dev tun
ca ca.crt
cert server.crt
key server.key
dh dh2048.pem
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "redirect-gateway def1 bypass-dhcp"
push "dhcp-option DNS 208.67.222.222"
push "dhcp-option DNS 208.67.220.220"
keepalive 10 120
key-direction 0
cipher AES-128-CBC # AES
comp-lzo
user nobody
group nogroup
persist-key
persist-tun
status openvpn-status.log
log openvpn.log
verb 3


Client.conf:
Client

client
dev tun
proto tcp
remote 139.59.183.118 1194
resolv-retry infinite
nobind
user nobody
group nogroup
persist-key
persist-tun
remote-cert-tls server
cipher AES-128-CBC
auth SHA256
key-direction 1
comp-lzo
verb 3
<ca>
-----BEGIN CERTIFICATE-----
*certificate info*
-----END CERTIFICATE-----
</ca>
<cert>
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=RU, ST=MO, L=Moscow, O=Fort-Funston, OU=&nbsp; YOU RKN, CN=Fort-Funston CA/name=server/emailAddress=kkuderko@yandex.ru
Validity
Not Before: May 15 14:02:32 2018 GMT
Not After : May 12 14:02:32 2028 GMT
Subject: C=RU, ST=MO, L=Moscow, O=Fort-Funston, OU=&nbsp; YOU RKN, CN=xarlamp/name=server/emailAddress=kkuderko@yandex.ru
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
*certificate info*
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints:
CA:FALSE
Netscape Comment:
Easy-RSA Generated Certificate
X509v3 Subject Key Identifier:
A4:E1:F3:B2:6B:3D:81:46:E8:5C:53:B3:60:45:E9:E2:AB:01:D8:E0
X509v3 Authority Key Identifier:
keyid:1F:85:BF:EE:61:4A:08:DD:54:66:92:2D:37:CC:5E:A6:27:5D:D8:56
DirName:/C=RU/ST=MO/L=Moscow/O=Fort-Funston/OU=&nbsp; YOU RKN/CN=Fort-Funston CA/name=server/emailAddress=kkuderko@yandex.ru
serial:FF:2A:58:E9:06:34:7C:70

X509v3 Extended Key Usage:
TLS Web Client Authentication
X509v3 Key Usage:
Digital Signature
X509v3 Subject Alternative Name:
DNS:xarlamp
Signature Algorithm: sha256WithRSAEncryption
*certificate info*
-----BEGIN CERTIFICATE-----
*certificate info*
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
*certificate info*
-----END PRIVATE KEY-----
</key>
<tls-auth>
-----BEGIN OpenVPN Static key V1-----
*certificate info*
-----END OpenVPN Static key V1-----
</tls-auth>


Please help me... Ask any questions you need.
TY

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 4171
Joined: Fri Jun 03, 2016 1:17 pm

Re: TLS Error: reading acknowledgement record from packet

Post by TinCanTech » Wed May 16, 2018 11:26 am


Post Reply