OpenVPN Support Forum

Community Support Forum
https://forums.openvpn.net/

New client no connection with openvpn server

https://forums.openvpn.net/viewtopic.php?t=34190

Page 1 of 1

New client no connection with openvpn server

Posted: Sun May 08, 2022 10:10 am
by Diabollo
Hi,
currently I'm using a openvpn server 2.3.4. with a openvpn client 2.4.0 on the Cubietruck with Armbian Linux 4.19.62. Everything is working well. I would like to replace the Cubietruck with a Rasberry Pi 4. An openvpn 2.4.7 is running on the Rasberry Pi with rasberrypi 5.10.103. Unfortunately, I can't get a connection to the server with the files from the Cubietruck. Where is the issue? Is this a version conflict?

Code: Select all

May 8 11:40:58 raspberrypi ovpn-client[2391]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
May 8 11:40:58 raspberrypi ovpn-client[2391]: TCP/UDP: Preserving recently used remote address: [AF_INET]1.1.1.1:123
May 8 11:40:58 raspberrypi ovpn-client[2391]: Socket Buffers: R=[180224->180224] S=[180224->180224]
May 8 11:40:58 raspberrypi ovpn-client[2391]: UDP link local: (not bound)
May 8 11:40:58 raspberrypi ovpn-client[2391]: UDP link remote: [AF_INET]1.1.1.1:123
May 8 11:40:58 raspberrypi ovpn-client[2391]: TLS: Initial packet from [AF_INET]1.1.1.1:123, sid=3a17e7fa 062245af
May 8 11:40:58 raspberrypi ovpn-client[2391]: TLS error: Unsupported protocol. This typically indicates that client and server have no common TLS version enabled. This can be caused by mismatched tls-version-min and tls-version-max options on client and server. If your OpenVPN client is between v2.3.6 and v2.3.2 try adding tls-version-min 1.0 to the client configuration to use TLS 1.0+ instead of TLS 1.0 only
May 8 11:40:58 raspberrypi ovpn-client[2391]: OpenSSL: error:1435F302:SSL routines:ssl_choose_client_version:unsupported protocol
May 8 11:40:58 raspberrypi ovpn-client[2391]: TLS_ERROR: BIO read tls_read_plaintext error
May 8 11:40:58 raspberrypi ovpn-client[2391]: TLS Error: TLS object -> incoming plaintext read error
May 8 11:40:58 raspberrypi ovpn-client[2391]: TLS Error: TLS handshake failed
May 8 11:40:58 raspberrypi ovpn-client[2391]: SIGUSR1[soft,tls-error] received, process restarting
May 8 11:40:58 raspberrypi ovpn-client[2391]: Restart pause, 20 second(s)

Re: New client no connection with openvpn server

Posted: Sun May 08, 2022 11:42 am
by TinCanTech
Diabollo wrote:
Sun May 08, 2022 10:10 am
 TLS error: Unsupported protocol. This typically indicates that client and server have no common TLS version enabled. This can be caused by mismatched tls-version-min and tls-version-max options on client and server. If your OpenVPN client is between v2.3.6 and v2.3.2 try adding tls-version-min 1.0 to the client configuration to use TLS 1.0+ instead of TLS 1.0 only
Proof that nobody reads their logs.

Re: New client no connection with openvpn server

Posted: Sun May 08, 2022 12:06 pm
by Diabollo
I did read it but no understand the issue.

Re: New client no connection with openvpn server

Posted: Sun May 08, 2022 1:06 pm
by Diabollo
tls-vesrion-min 1.0 in the client config file solved this issue. :)
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/