TCP: connect to [b][AF_INET]OURPUBLICIP:443 failed[/b]: Unknown error
Posted: Mon Mar 09, 2020 5:26 pm
Hi,
In our infrastructure one of the client (OS: Windows 10 64 bit, Client 64-bit OpenVPN 2.4.8) is not able to connect.
After importing the correct profile he tries to launch the connection but he then receives the following Error:
TCP: connect to [AF_INET]OURPUBLICIP:443 failed: Unknown error
When he tries to curl the public IP he then receives:
The full Openvpn log is the following:
From the Openvpn server, implemented with Debian OS, we see nothing from the auth.log file.
With the same Windows10 terminal, connecting through another external network, he is then able to connect.
What should we look into ?
Which are the networking settings to investigate on, if any ?
Thank you in advance for support.
In our infrastructure one of the client (OS: Windows 10 64 bit, Client 64-bit OpenVPN 2.4.8) is not able to connect.
After importing the correct profile he tries to launch the connection but he then receives the following Error:
TCP: connect to [AF_INET]OURPUBLICIP:443 failed: Unknown error
When he tries to curl the public IP he then receives:
Code: Select all
$ curl -vvv http://OURIP
* Trying OURIP:80...
* TCP_NODELAY set
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
0 0 0 0 0 0 0 0 --:--:-- 0:00:20 --:--:-- 0* connect to OURIP port 80 failed: Timed out
* Failed to connect to OURIP port 80: Timed out
0 0 0 0 0 0 0 0 --:--:-- 0:00:21 --:--:-- 0
* Closing connection 0
curl: (28) Failed to connect to OURIP port 80: Timed outCode: Select all
Mon Mar 09 17:02:40 2020 us=521200 Current Parameter Settings:
Mon Mar 09 17:02:40 2020 us=521200 config = 'OURWIFIPROFILENAME.ovpn'
Mon Mar 09 17:02:40 2020 us=521200 mode = 0
Mon Mar 09 17:02:40 2020 us=521200 show_ciphers = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 show_digests = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 show_engines = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 genkey = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 key_pass_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521200 show_tls_ciphers = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 connect_retry_max = 0
Mon Mar 09 17:02:40 2020 us=521200 Connection profiles [0]:
Mon Mar 09 17:02:40 2020 us=521200 proto = tcp-client
Mon Mar 09 17:02:40 2020 us=521200 local = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521200 local_port = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521200 remote = '52.213.81.202'
Mon Mar 09 17:02:40 2020 us=521200 remote_port = '443'
Mon Mar 09 17:02:40 2020 us=521200 remote_float = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 bind_defined = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 bind_local = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 bind_ipv6_only = DISABLED
Mon Mar 09 17:02:40 2020 us=521200 connect_retry_seconds = 5
Mon Mar 09 17:02:40 2020 us=521200 connect_timeout = 120
Mon Mar 09 17:02:40 2020 us=521200 socks_proxy_server = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521200 socks_proxy_port = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 tun_mtu = 1500
Mon Mar 09 17:02:40 2020 us=521698 tun_mtu_defined = ENABLED
Mon Mar 09 17:02:40 2020 us=521698 link_mtu = 1500
Mon Mar 09 17:02:40 2020 us=521698 link_mtu_defined = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 tun_mtu_extra = 0
Mon Mar 09 17:02:40 2020 us=521698 tun_mtu_extra_defined = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 mtu_discover_type = -1
Mon Mar 09 17:02:40 2020 us=521698 fragment = 0
Mon Mar 09 17:02:40 2020 us=521698 mssfix = 1450
Mon Mar 09 17:02:40 2020 us=521698 explicit_exit_notification = 0
Mon Mar 09 17:02:40 2020 us=521698 Connection profiles END
Mon Mar 09 17:02:40 2020 us=521698 remote_random = ENABLED
Mon Mar 09 17:02:40 2020 us=521698 ipchange = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 dev = 'tun'
Mon Mar 09 17:02:40 2020 us=521698 dev_type = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 dev_node = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 lladdr = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 topology = 1
Mon Mar 09 17:02:40 2020 us=521698 ifconfig_local = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 ifconfig_remote_netmask = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 ifconfig_noexec = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 ifconfig_nowarn = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 ifconfig_ipv6_local = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 ifconfig_ipv6_netbits = 0
Mon Mar 09 17:02:40 2020 us=521698 ifconfig_ipv6_remote = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 shaper = 0
Mon Mar 09 17:02:40 2020 us=521698 mtu_test = 0
Mon Mar 09 17:02:40 2020 us=521698 mlock = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 keepalive_ping = 0
Mon Mar 09 17:02:40 2020 us=521698 keepalive_timeout = 0
Mon Mar 09 17:02:40 2020 us=521698 inactivity_timeout = 0
Mon Mar 09 17:02:40 2020 us=521698 ping_send_timeout = 0
Mon Mar 09 17:02:40 2020 us=521698 ping_rec_timeout = 0
Mon Mar 09 17:02:40 2020 us=521698 ping_rec_timeout_action = 0
Mon Mar 09 17:02:40 2020 us=521698 ping_timer_remote = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 remap_sigusr1 = 0
Mon Mar 09 17:02:40 2020 us=521698 persist_tun = ENABLED
Mon Mar 09 17:02:40 2020 us=521698 persist_local_ip = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 persist_remote_ip = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 persist_key = ENABLED
Mon Mar 09 17:02:40 2020 us=521698 passtos = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 resolve_retry_seconds = 1000000000
Mon Mar 09 17:02:40 2020 us=521698 resolve_in_advance = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 username = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 groupname = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 chroot_dir = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 cd_dir = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 writepid = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 up_script = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 down_script = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=521698 down_pre = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 up_restart = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 up_delay = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 daemon = DISABLED
Mon Mar 09 17:02:40 2020 us=521698 inetd = 0
Mon Mar 09 17:02:40 2020 us=522199 log = ENABLED
Mon Mar 09 17:02:40 2020 us=522199 suppress_timestamps = DISABLED
Mon Mar 09 17:02:40 2020 us=522199 machine_readable_output = DISABLED
Mon Mar 09 17:02:40 2020 us=522199 nice = 0
Mon Mar 09 17:02:40 2020 us=522199 verbosity = 7
Mon Mar 09 17:02:40 2020 us=522199 mute = 0
Mon Mar 09 17:02:40 2020 us=522199 gremlin = 0
Mon Mar 09 17:02:40 2020 us=522199 status_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522199 status_file_version = 1
Mon Mar 09 17:02:40 2020 us=522199 status_file_update_freq = 60
Mon Mar 09 17:02:40 2020 us=522199 occ = ENABLED
Mon Mar 09 17:02:40 2020 us=522199 rcvbuf = 0
Mon Mar 09 17:02:40 2020 us=522199 sndbuf = 0
Mon Mar 09 17:02:40 2020 us=522199 sockflags = 0
Mon Mar 09 17:02:40 2020 us=522199 fast_io = DISABLED
Mon Mar 09 17:02:40 2020 us=522199 comp.alg = 2
Mon Mar 09 17:02:40 2020 us=522199 comp.flags = 1
Mon Mar 09 17:02:40 2020 us=522199 route_script = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522199 route_default_gateway = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522199 route_default_metric = 0
Mon Mar 09 17:02:40 2020 us=522199 route_noexec = DISABLED
Mon Mar 09 17:02:40 2020 us=522199 route_delay = 5
Mon Mar 09 17:02:40 2020 us=522199 route_delay_window = 30
Mon Mar 09 17:02:40 2020 us=522199 route_delay_defined = ENABLED
Mon Mar 09 17:02:40 2020 us=522199 route_nopull = DISABLED
Mon Mar 09 17:02:40 2020 us=522199 route_gateway_via_dhcp = DISABLED
Mon Mar 09 17:02:40 2020 us=522199 allow_pull_fqdn = DISABLED
Mon Mar 09 17:02:40 2020 us=522199 Pull filters:
Mon Mar 09 17:02:40 2020 us=522199 ignore "route-method"
Mon Mar 09 17:02:40 2020 us=522199 management_addr = '127.0.0.1'
Mon Mar 09 17:02:40 2020 us=522199 management_port = '25340'
Mon Mar 09 17:02:40 2020 us=522199 management_user_pass = 'stdin'
Mon Mar 09 17:02:40 2020 us=522199 management_log_history_cache = 250
Mon Mar 09 17:02:40 2020 us=522199 management_echo_buffer_size = 100
Mon Mar 09 17:02:40 2020 us=522199 management_write_peer_info_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522199 management_client_user = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522199 management_client_group = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522199 management_flags = 6
Mon Mar 09 17:02:40 2020 us=522199 shared_secret_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 key_direction = 1
Mon Mar 09 17:02:40 2020 us=522701 ciphername = 'AES-256-CBC'
Mon Mar 09 17:02:40 2020 us=522701 ncp_enabled = ENABLED
Mon Mar 09 17:02:40 2020 us=522701 ncp_ciphers = 'AES-256-GCM:AES-128-GCM'
Mon Mar 09 17:02:40 2020 us=522701 authname = 'SHA512'
Mon Mar 09 17:02:40 2020 us=522701 prng_hash = 'SHA1'
Mon Mar 09 17:02:40 2020 us=522701 prng_nonce_secret_len = 16
Mon Mar 09 17:02:40 2020 us=522701 keysize = 0
Mon Mar 09 17:02:40 2020 us=522701 engine = DISABLED
Mon Mar 09 17:02:40 2020 us=522701 replay = ENABLED
Mon Mar 09 17:02:40 2020 us=522701 mute_replay_warnings = DISABLED
Mon Mar 09 17:02:40 2020 us=522701 replay_window = 64
Mon Mar 09 17:02:40 2020 us=522701 replay_time = 15
Mon Mar 09 17:02:40 2020 us=522701 packet_id_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 use_iv = ENABLED
Mon Mar 09 17:02:40 2020 us=522701 test_crypto = DISABLED
Mon Mar 09 17:02:40 2020 us=522701 tls_server = DISABLED
Mon Mar 09 17:02:40 2020 us=522701 tls_client = ENABLED
Mon Mar 09 17:02:40 2020 us=522701 key_method = 2
Mon Mar 09 17:02:40 2020 us=522701 ca_file = 'widi-dev.pem'
Mon Mar 09 17:02:40 2020 us=522701 ca_path = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 dh_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 cert_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 extra_certs_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 priv_key_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 pkcs12_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 cryptoapi_cert = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 cipher_list = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 cipher_list_tls13 = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 tls_cert_profile = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 tls_verify = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 tls_export_cert = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 verify_x509_type = 0
Mon Mar 09 17:02:40 2020 us=522701 verify_x509_name = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 crl_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 ns_cert_type = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_ku[i] = 0
Mon Mar 09 17:02:40 2020 us=522701 remote_cert_eku = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=522701 ssl_flags = 0
Mon Mar 09 17:02:40 2020 us=522701 tls_timeout = 2
Mon Mar 09 17:02:40 2020 us=522701 renegotiate_bytes = -1
Mon Mar 09 17:02:40 2020 us=522701 renegotiate_packets = 0
Mon Mar 09 17:02:40 2020 us=523201 renegotiate_seconds = 3600
Mon Mar 09 17:02:40 2020 us=523201 handshake_window = 60
Mon Mar 09 17:02:40 2020 us=523201 transition_window = 3600
Mon Mar 09 17:02:40 2020 us=523201 single_session = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 push_peer_info = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 tls_exit = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 tls_auth_file = 'ta.key'
Mon Mar 09 17:02:40 2020 us=523201 tls_crypt_file = '[UNDEF]'
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_protected_authentication = DISABLED
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_private_mode = 00000000
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_private_mode = 00000000
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_private_mode = 00000000
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_private_mode = 00000000
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_private_mode = 00000000
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_private_mode = 00000000
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_private_mode = 00000000
Mon Mar 09 17:02:40 2020 us=523201 pkcs11_private_mode = 00000...With the same Windows10 terminal, connecting through another external network, he is then able to connect.
What should we look into ?
Which are the networking settings to investigate on, if any ?
Thank you in advance for support.