Windows 11 only connecting to Netgear router over hotspot, not home ISPs

[riley1839]

Hello,

I set up a new Netgear R7000 for a friend including vpn. I have successfully connected two different Windows 10 laptops to the vpn from multiple locations but one Windows 11 laptop will only connect using the hotspot on my phone. It will not connect from the home network for my friends employee, or her hotspot or from my home ISP. Doing an online search for some of the TLS errors I saw some posts saying it might be a problem with the drivers on the client but I have tried both wireless and wired with no change.

After searching the forums for some of the terms i see in the log I noticed there was a link to read about using oconf= but unfortunately it is late and I don't think I understand it all correctly. Sorry if I don't do it right

I removed lines that were repeated again and again in an effort to shorten my post but unfortunately it is still rather long but I don't know what people will be looking for so I didn't delete anything else.

Thank you for any suggestions anyone might have.

[oconf=]
2022-08-02 22:35:54 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2022-08-02 22:35:54 us=468000 DEPRECATED OPTION: --cipher set to 'AES-128-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-128-CBC' to --data-ciphers or change --cipher 'AES-128-CBC' to --data-ciphers-fallback 'AES-128-CBC' to silence this warning.
2022-08-02 22:35:54 us=468000 Current Parameter Settings:
2022-08-02 22:35:54 us=468000 config = 'client1.ovpn'
2022-08-02 22:35:54 us=468000 mode = 0
2022-08-02 22:35:54 us=468000 show_ciphers = DISABLED
2022-08-02 22:35:54 us=468000 show_digests = DISABLED
2022-08-02 22:35:54 us=468000 show_engines = DISABLED
2022-08-02 22:35:54 us=468000 genkey = DISABLED
2022-08-02 22:35:54 us=468000 genkey_filename = '[UNDEF]'
2022-08-02 22:35:54 us=468000 key_pass_file = '[UNDEF]'
2022-08-02 22:35:54 us=468000 show_tls_ciphers = DISABLED
2022-08-02 22:35:54 us=468000 connect_retry_max = 0
2022-08-02 22:35:54 us=468000 Connection profiles [0]:
2022-08-02 22:35:54 us=468000 proto = udp
2022-08-02 22:35:54 us=468000 local = '[UNDEF]'
2022-08-02 22:35:54 us=468000 local_port = '[UNDEF]'
2022-08-02 22:35:54 us=468000 remote = 'XXXXXXX.mynetgear.com'
2022-08-02 22:35:54 us=468000 remote_port = '12974'
2022-08-02 22:35:54 us=468000 remote_float = DISABLED
2022-08-02 22:35:54 us=468000 bind_defined = DISABLED
2022-08-02 22:35:54 us=468000 bind_local = DISABLED
2022-08-02 22:35:54 us=468000 bind_ipv6_only = DISABLED
2022-08-02 22:35:54 us=468000 connect_retry_seconds = 5
2022-08-02 22:35:54 us=468000 connect_timeout = 120
2022-08-02 22:35:54 us=468000 socks_proxy_server = '[UNDEF]'
2022-08-02 22:35:54 us=468000 socks_proxy_port = '[UNDEF]'
2022-08-02 22:35:54 us=468000 tun_mtu = 1500
2022-08-02 22:35:54 us=468000 tun_mtu_defined = ENABLED
2022-08-02 22:35:54 us=468000 link_mtu = 1500
2022-08-02 22:35:54 us=468000 link_mtu_defined = DISABLED
2022-08-02 22:35:54 us=468000 tun_mtu_extra = 32
2022-08-02 22:35:54 us=468000 tun_mtu_extra_defined = ENABLED
2022-08-02 22:35:54 us=468000 mtu_discover_type = -1
2022-08-02 22:35:54 us=468000 fragment = 0
2022-08-02 22:35:54 us=468000 mssfix = 1450
2022-08-02 22:35:54 us=468000 explicit_exit_notification = 0
2022-08-02 22:35:54 us=468000 tls_auth_file = '[UNDEF]'
2022-08-02 22:35:54 us=468000 key_direction = not set
2022-08-02 22:35:54 us=468000 tls_crypt_file = '[UNDEF]'
2022-08-02 22:35:54 us=468000 tls_crypt_v2_file = '[UNDEF]'
2022-08-02 22:35:54 us=468000 Connection profiles END
2022-08-02 22:35:54 us=468000 remote_random = DISABLED
2022-08-02 22:35:54 us=468000 ipchange = '[UNDEF]'
2022-08-02 22:35:54 us=468000 dev = 'tap'
2022-08-02 22:35:54 us=468000 dev_type = '[UNDEF]'
2022-08-02 22:35:54 us=468000 dev_node = 'NETGEAR-VPN'
2022-08-02 22:35:54 us=468000 lladdr = '[UNDEF]'
2022-08-02 22:35:54 us=468000 topology = 1
2022-08-02 22:35:54 us=468000 ifconfig_local = '[UNDEF]'
2022-08-02 22:35:54 us=468000 ifconfig_remote_netmask = '[UNDEF]'
2022-08-02 22:35:54 us=468000 ifconfig_noexec = DISABLED
2022-08-02 22:35:54 us=468000 ifconfig_nowarn = DISABLED
2022-08-02 22:35:54 us=468000 ifconfig_ipv6_local = '[UNDEF]'
2022-08-02 22:35:54 us=468000 ifconfig_ipv6_netbits = 0
2022-08-02 22:35:54 us=468000 ifconfig_ipv6_remote = '[UNDEF]'
2022-08-02 22:35:54 us=468000 shaper = 0
2022-08-02 22:35:54 us=468000 mtu_test = 0
2022-08-02 22:35:54 us=468000 mlock = DISABLED
2022-08-02 22:35:54 us=468000 keepalive_ping = 0
2022-08-02 22:35:54 us=468000 keepalive_timeout = 0
2022-08-02 22:35:54 us=468000 inactivity_timeout = 0
2022-08-02 22:35:54 us=468000 inactivity_minimum_bytes = 0
2022-08-02 22:35:54 us=468000 ping_send_timeout = 0
2022-08-02 22:35:54 us=468000 ping_rec_timeout = 0
2022-08-02 22:35:54 us=468000 ping_rec_timeout_action = 0
2022-08-02 22:35:54 us=468000 ping_timer_remote = DISABLED
2022-08-02 22:35:54 us=468000 remap_sigusr1 = 0
2022-08-02 22:35:54 us=468000 persist_tun = ENABLED
2022-08-02 22:35:54 us=468000 persist_local_ip = DISABLED
2022-08-02 22:35:54 us=468000 persist_remote_ip = DISABLED
2022-08-02 22:35:54 us=468000 persist_key = ENABLED
2022-08-02 22:35:54 us=468000 passtos = DISABLED
2022-08-02 22:35:54 us=468000 resolve_retry_seconds = 1000000000
2022-08-02 22:35:54 us=468000 resolve_in_advance = DISABLED
2022-08-02 22:35:54 us=468000 username = '[UNDEF]'
2022-08-02 22:35:54 us=468000 groupname = '[UNDEF]'
2022-08-02 22:35:54 us=468000 chroot_dir = '[UNDEF]'
2022-08-02 22:35:54 us=468000 cd_dir = '[UNDEF]'
2022-08-02 22:35:54 us=468000 writepid = '[UNDEF]'
2022-08-02 22:35:54 us=468000 up_script = '[UNDEF]'
2022-08-02 22:35:54 us=468000 down_script = '[UNDEF]'
2022-08-02 22:35:54 us=468000 down_pre = DISABLED
2022-08-02 22:35:54 us=468000 up_restart = DISABLED
2022-08-02 22:35:54 us=468000 up_delay = DISABLED
2022-08-02 22:35:54 us=468000 daemon = DISABLED
2022-08-02 22:35:54 us=468000 inetd = 0
2022-08-02 22:35:54 us=468000 log = ENABLED
2022-08-02 22:35:54 us=468000 suppress_timestamps = DISABLED
2022-08-02 22:35:54 us=468000 machine_readable_output = DISABLED
2022-08-02 22:35:54 us=468000 nice = 0
2022-08-02 22:35:54 us=468000 verbosity = 5
2022-08-02 22:35:54 us=468000 mute = 0
2022-08-02 22:35:54 us=468000 status_file = '[UNDEF]'
2022-08-02 22:35:54 us=468000 status_file_version = 1
2022-08-02 22:35:54 us=468000 status_file_update_freq = 60
2022-08-02 22:35:54 us=468000 occ = ENABLED
2022-08-02 22:35:54 us=468000 rcvbuf = 0
2022-08-02 22:35:54 us=468000 sndbuf = 0
2022-08-02 22:35:54 us=468000 sockflags = 0
2022-08-02 22:35:54 us=468000 fast_io = DISABLED
2022-08-02 22:35:54 us=468000 comp.alg = 2
2022-08-02 22:35:54 us=468000 comp.flags = 1
2022-08-02 22:35:54 us=468000 route_script = '[UNDEF]'
2022-08-02 22:35:54 us=468000 route_default_gateway = '[UNDEF]'
2022-08-02 22:35:54 us=468000 route_default_metric = 0
2022-08-02 22:35:54 us=468000 route_noexec = DISABLED
2022-08-02 22:35:54 us=468000 route_delay = 5
2022-08-02 22:35:54 us=468000 route_delay_window = 30
2022-08-02 22:35:54 us=468000 route_delay_defined = ENABLED
2022-08-02 22:35:54 us=468000 route_nopull = DISABLED
2022-08-02 22:35:54 us=468000 route_gateway_via_dhcp = DISABLED
2022-08-02 22:35:54 us=468000 allow_pull_fqdn = DISABLED
2022-08-02 22:35:54 us=468000 Pull filters:
2022-08-02 22:35:54 us=468000 ignore "route-method"
2022-08-02 22:35:54 us=468000 management_addr = '127.0.0.1'
2022-08-02 22:35:54 us=468000 management_port = '25340'
2022-08-02 22:35:54 us=468000 management_user_pass = 'stdin'
2022-08-02 22:35:54 us=468000 management_log_history_cache = 250
2022-08-02 22:35:54 us=468000 management_echo_buffer_size = 100
2022-08-02 22:35:54 us=468000 management_write_peer_info_file = '[UNDEF]'
2022-08-02 22:35:54 us=468000 management_client_user = '[UNDEF]'
2022-08-02 22:35:54 us=468000 management_client_group = '[UNDEF]'
2022-08-02 22:35:54 us=468000 management_flags = 6
2022-08-02 22:35:54 us=468000 shared_secret_file = '[UNDEF]'
2022-08-02 22:35:54 us=468000 key_direction = not set
2022-08-02 22:35:54 us=468000 ciphername = 'AES-128-CBC'
2022-08-02 22:35:54 us=468000 ncp_enabled = ENABLED
2022-08-02 22:35:54 us=468000 ncp_ciphers = 'AES-256-GCM:AES-128-GCM:AES-128-CBC'
2022-08-02 22:35:54 us=468000 authname = 'SHA1'
2022-08-02 22:35:54 us=468000 prng_hash = 'SHA1'
2022-08-02 22:35:54 us=468000 prng_nonce_secret_len = 16
2022-08-02 22:35:54 us=468000 keysize = 0
2022-08-02 22:35:54 us=468000 engine = DISABLED
2022-08-02 22:35:54 us=468000 replay = ENABLED
2022-08-02 22:35:54 us=468000 mute_replay_warnings = DISABLED
2022-08-02 22:35:54 us=468000 replay_window = 64
2022-08-02 22:35:54 us=468000 replay_time = 15
2022-08-02 22:35:54 us=468000 packet_id_file = '[UNDEF]'
2022-08-02 22:35:54 us=468000 test_crypto = DISABLED
2022-08-02 22:35:54 us=468000 tls_server = DISABLED
2022-08-02 22:35:54 us=468000 tls_client = ENABLED
2022-08-02 22:35:54 us=468000 ca_file = 'ca.crt'
2022-08-02 22:35:54 us=468000 ca_path = '[UNDEF]'
2022-08-02 22:35:54 us=468000 dh_file = '[UNDEF]'
2022-08-02 22:35:54 us=468000 cert_file = 'client.crt'
2022-08-02 22:35:54 us=468000 extra_certs_file = '[UNDEF]'
2022-08-02 22:35:54 us=468000 priv_key_file = 'client.key'
2022-08-02 22:35:54 us=468000 pkcs12_file = '[UNDEF]'
2022-08-02 22:35:54 us=468000 cryptoapi_cert = '[UNDEF]'
2022-08-02 22:35:54 us=468000 cipher_list = '[UNDEF]'
2022-08-02 22:35:54 us=468000 cipher_list_tls13 = '[UNDEF]'
2022-08-02 22:35:54 us=468000 tls_cert_profile = '[UNDEF]'
2022-08-02 22:35:54 us=468000 tls_verify = '[UNDEF]'
2022-08-02 22:35:54 us=468000 tls_export_cert = '[UNDEF]'
2022-08-02 22:35:54 us=468000 verify_x509_type = 0
2022-08-02 22:35:54 us=468000 verify_x509_name = '[UNDEF]'
2022-08-02 22:35:54 us=468000 crl_file = '[UNDEF]'
2022-08-02 22:35:54 us=468000 ns_cert_type = 0

2022-08-02 22:35:54 us=468000 remote_cert_ku = 0
2022-08-02 22:35:54 us=468000 remote_cert_eku = '[UNDEF]'
2022-08-02 22:35:54 us=468000 ssl_flags = 0
2022-08-02 22:35:54 us=468000 tls_timeout = 2
2022-08-02 22:35:54 us=468000 renegotiate_bytes = -1
2022-08-02 22:35:54 us=468000 renegotiate_packets = 0
2022-08-02 22:35:54 us=468000 renegotiate_seconds = 3600
2022-08-02 22:35:54 us=468000 handshake_window = 60
2022-08-02 22:35:54 us=468000 transition_window = 3600
2022-08-02 22:35:54 us=468000 single_session = DISABLED
2022-08-02 22:35:54 us=468000 push_peer_info = DISABLED
2022-08-02 22:35:54 us=468000 tls_exit = DISABLED
2022-08-02 22:35:54 us=468000 tls_crypt_v2_metadata = '[UNDEF]'
2022-08-02 22:35:54 us=468000 pkcs11_protected_authentication = DISABLED

2022-08-02 22:35:54 us=468000 pkcs11_protected_authentication = DISABLED
2022-08-02 22:35:54 us=468000 pkcs11_private_mode = 00000000

2022-08-02 22:35:54 us=468000 pkcs11_cert_private = DISABLED
2022-08-02 22:35:54 us=468000 pkcs11_pin_cache_period = -1
2022-08-02 22:35:54 us=468000 pkcs11_id = '[UNDEF]'
2022-08-02 22:35:54 us=468000 pkcs11_id_management = DISABLED
2022-08-02 22:35:54 us=468000 server_network = 0.0.0.0
2022-08-02 22:35:54 us=468000 server_netmask = 0.0.0.0
2022-08-02 22:35:54 us=468000 server_network_ipv6 = ::
2022-08-02 22:35:54 us=468000 server_netbits_ipv6 = 0
2022-08-02 22:35:54 us=468000 server_bridge_ip = 0.0.0.0
2022-08-02 22:35:54 us=468000 server_bridge_netmask = 0.0.0.0
2022-08-02 22:35:54 us=468000 server_bridge_pool_start = 0.0.0.0
2022-08-02 22:35:54 us=468000 server_bridge_pool_end = 0.0.0.0
2022-08-02 22:35:54 us=468000 ifconfig_pool_defined = DISABLED
2022-08-02 22:35:54 us=468000 ifconfig_pool_start = 0.0.0.0
2022-08-02 22:35:54 us=468000 ifconfig_pool_end = 0.0.0.0
2022-08-02 22:35:54 us=468000 ifconfig_pool_netmask = 0.0.0.0
2022-08-02 22:35:54 us=468000 ifconfig_pool_persist_filename = '[UNDEF]'
2022-08-02 22:35:54 us=468000 ifconfig_pool_persist_refresh_freq = 600
2022-08-02 22:35:54 us=468000 ifconfig_ipv6_pool_defined = DISABLED
2022-08-02 22:35:54 us=468000 ifconfig_ipv6_pool_base = ::
2022-08-02 22:35:54 us=468000 ifconfig_ipv6_pool_netbits = 0
2022-08-02 22:35:54 us=468000 n_bcast_buf = 256
2022-08-02 22:35:54 us=468000 tcp_queue_limit = 64
2022-08-02 22:35:54 us=468000 real_hash_size = 256
2022-08-02 22:35:54 us=468000 virtual_hash_size = 256
2022-08-02 22:35:54 us=468000 client_connect_script = '[UNDEF]'
2022-08-02 22:35:54 us=468000 learn_address_script = '[UNDEF]'
2022-08-02 22:35:54 us=468000 client_disconnect_script = '[UNDEF]'
2022-08-02 22:35:54 us=468000 client_config_dir = '[UNDEF]'
2022-08-02 22:35:54 us=468000 ccd_exclusive = DISABLED
2022-08-02 22:35:54 us=468000 tmp_dir = 'C:\Users\XXXXXXX\AppData\Local\Temp\'
2022-08-02 22:35:54 us=468000 push_ifconfig_defined = DISABLED
2022-08-02 22:35:54 us=468000 push_ifconfig_local = 0.0.0.0
2022-08-02 22:35:54 us=468000 push_ifconfig_remote_netmask = 0.0.0.0
2022-08-02 22:35:54 us=468000 push_ifconfig_ipv6_defined = DISABLED
2022-08-02 22:35:54 us=468000 push_ifconfig_ipv6_local = ::/0
2022-08-02 22:35:54 us=468000 push_ifconfig_ipv6_remote = ::
2022-08-02 22:35:54 us=468000 enable_c2c = DISABLED
2022-08-02 22:35:54 us=468000 duplicate_cn = DISABLED
2022-08-02 22:35:54 us=468000 cf_max = 0
2022-08-02 22:35:54 us=468000 cf_per = 0
2022-08-02 22:35:54 us=468000 max_clients = 1024
2022-08-02 22:35:54 us=468000 max_routes_per_client = 256
2022-08-02 22:35:54 us=468000 auth_user_pass_verify_script = '[UNDEF]'
2022-08-02 22:35:54 us=468000 auth_user_pass_verify_script_via_file = DISABLED
2022-08-02 22:35:54 us=468000 auth_token_generate = DISABLED
2022-08-02 22:35:54 us=468000 auth_token_lifetime = 0
2022-08-02 22:35:54 us=468000 auth_token_secret_file = '[UNDEF]'
2022-08-02 22:35:54 us=468000 vlan_tagging = DISABLED
2022-08-02 22:35:54 us=468000 vlan_accept = all
2022-08-02 22:35:54 us=468000 vlan_pvid = 1
2022-08-02 22:35:54 us=468000 client = ENABLED
2022-08-02 22:35:54 us=468000 pull = ENABLED
2022-08-02 22:35:54 us=468000 auth_user_pass_file = '[UNDEF]'
2022-08-02 22:35:54 us=468000 show_net_up = DISABLED
2022-08-02 22:35:54 us=468000 route_method = 3
2022-08-02 22:35:54 us=468000 block_outside_dns = DISABLED
2022-08-02 22:35:54 us=468000 ip_win32_defined = DISABLED
2022-08-02 22:35:54 us=468000 ip_win32_type = 3
2022-08-02 22:35:54 us=468000 dhcp_masq_offset = 0
2022-08-02 22:35:54 us=468000 dhcp_lease_time = 31536000
2022-08-02 22:35:54 us=468000 tap_sleep = 0
2022-08-02 22:35:54 us=468000 dhcp_options = DISABLED
2022-08-02 22:35:54 us=468000 dhcp_renew = DISABLED
2022-08-02 22:35:54 us=468000 dhcp_pre_release = DISABLED
2022-08-02 22:35:54 us=468000 domain = '[UNDEF]'
2022-08-02 22:35:54 us=468000 netbios_scope = '[UNDEF]'
2022-08-02 22:35:54 us=468000 netbios_node_type = 0
2022-08-02 22:35:54 us=468000 disable_nbt = DISABLED
2022-08-02 22:35:54 us=468000 OpenVPN 2.5.7 Windows-MSVC [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on May 27 2022
2022-08-02 22:35:54 us=468000 Windows version 10.0 (Windows 10 or greater) 64bit
2022-08-02 22:35:54 us=468000 library versions: OpenSSL 1.1.1o 3 May 2022, LZO 2.10
2022-08-02 22:35:54 us=468000 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
2022-08-02 22:35:54 us=468000 Need hold release from management interface, waiting...
2022-08-02 22:35:54 us=937000 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
2022-08-02 22:35:55 us=46000 MANAGEMENT: CMD 'state on'
2022-08-02 22:35:55 us=46000 MANAGEMENT: CMD 'log all on'
2022-08-02 22:35:55 us=156000 MANAGEMENT: CMD 'echo all on'
2022-08-02 22:35:55 us=156000 MANAGEMENT: CMD 'bytecount 5'
2022-08-02 22:35:55 us=171000 MANAGEMENT: CMD 'hold off'
2022-08-02 22:35:55 us=171000 MANAGEMENT: CMD 'hold release'
2022-08-02 22:35:55 us=171000 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
2022-08-02 22:35:55 us=187000 LZO compression initializing
2022-08-02 22:35:55 us=187000 Control Channel MTU parms [ L:1654 D:1212 EF:38 EB:0 ET:0 EL:3 ]
2022-08-02 22:35:55 us=187000 MANAGEMENT: >STATE:1659501355,RESOLVE,,,,,,
2022-08-02 22:35:55 us=250000 Data Channel MTU parms [ L:1654 D:1450 EF:122 EB:411 ET:32 EL:3 ]
2022-08-02 22:35:55 us=250000 Local Options String (VER=V4): 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
2022-08-02 22:35:55 us=250000 Expected Remote Options String (VER=V4): 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
2022-08-02 22:35:55 us=250000 TCP/UDP: Preserving recently used remote address: [AF_INET]74.205.150.112:12974
2022-08-02 22:35:55 us=250000 Socket Buffers: R=[65536->65536] S=[65536->65536]
2022-08-02 22:35:55 us=250000 UDP link local: (not bound)
2022-08-02 22:35:55 us=250000 UDP link remote: [AF_INET]74.205.150.112:12974
2022-08-02 22:35:55 us=250000 MANAGEMENT: >STATE:1659501355,WAIT,,,,,,
WR2022-08-02 22:35:55 us=281000 MANAGEMENT: >STATE:1659501355,AUTH,,,,,,
2022-08-02 22:35:55 us=281000 TLS: Initial packet from [AF_INET]74.205.150.112:12974, sid=f1980224 15cebeb2
WWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWR2022-08-02 22:36:03 us=484000 OpenSSL: error:0D0C40D8:asn1 encoding routines:c2i_ASN1_OBJECT:invalid object encoding
2022-08-02 22:36:03 us=484000 OpenSSL: error:0D08303A:asn1 encoding routines:asn1_template_noexp_d2i:nested asn1 error
2022-08-02 22:36:03 us=484000 OpenSSL: error:0D08303A:asn1 encoding routines:asn1_template_noexp_d2i:nested asn1 error
2022-08-02 22:36:03 us=484000 OpenSSL: error:0D08303A:asn1 encoding routines:asn1_template_noexp_d2i:nested asn1 error
2022-08-02 22:36:03 us=484000 OpenSSL: error:0D08303A:asn1 encoding routines:asn1_template_noexp_d2i:nested asn1 error
2022-08-02 22:36:03 us=484000 OpenSSL: error:0D08303A:asn1 encoding routines:asn1_template_noexp_d2i:nested asn1 error
2022-08-02 22:36:03 us=484000 OpenSSL: error:1416F00D:SSL routines:tls_process_server_certificate:ASN1 lib
2022-08-02 22:36:03 us=484000 TLS_ERROR: BIO read tls_read_plaintext error
2022-08-02 22:36:03 us=484000 TLS Error: TLS object -> incoming plaintext read error
2022-08-02 22:36:03 us=484000 TLS Error: TLS handshake failed
2022-08-02 22:36:03 us=484000 TCP/UDP: Closing socket
2022-08-02 22:36:03 us=484000 SIGUSR1[soft,tls-error] received, process restarting
2022-08-02 22:36:03 us=484000 MANAGEMENT: >STATE:1659501363,RECONNECTING,tls-error,,,,,
2022-08-02 22:36:03 us=484000 Restart pause, 5 second(s)

[TinCanTech]

That is a new error!

Please post your client and server config files, like so:
viewtopic.php?t=22603#p68963

FYI, the most likely candidate for the source of the problem is the Netgear router.

[riley1839]

Hello,

Thank you for the quick response. I wasn't able to find a way to get the server config, I looked in the backup for the entire router hoping I could find the vpn section but the backup file is all special characters.

VPN options in the Netgear router:
Enable VPN Service (checkbox)
Links for Client setup instructions (I have confirmed I have followed them)
Links for downloading the config and cert files
TUN Mode Service Type (UDP or TCP) UDP is default and I left
TUN Mode Service Port (12973) Default value i left
TAP Mode Service Port (UDP or TCP) UDP is default and I left
TAP Mode Service Port (12974) Default value I left
Clients will use this VPN connection to access (All sites on the Internet & Home Network; Home Network only; Auto) Default is Auto which I left

View Originalclient

client
dev tap
proto udp
dev-node NETGEAR-VPN
remote XXXXXXX.mynetgear.com 12974
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
cipher AES-128-CBC
comp-lzo
verb 5

[TinCanTech]

You must get the router log file, in order to ascertain the version of OpenSSL that it uses and verify any errors.

[riley1839]

I searched through the router UI again and did a few searches online on how to get that information with no luck. But I did discover that Netgear offers 90 days of support after purchase so I can contact them to see if i have any luck. I will be traveling the rest of this week but when I return I will contact Netgear to get you the information you need.

Thanks again.

[TinCanTech]

It sounds like you have a new router, make sure it is using up-to-date firmware, not stock garbage.