No TLS handshake after creating and installing new crts

Need help configuring your VPN? Just post here and you'll get that help.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
paquette
OpenVpn Newbie
Posts: 7
Joined: Sat Aug 31, 2013 1:48 pm

No TLS handshake after creating and installing new crts

Post by paquette » Fri Sep 08, 2023 7:13 pm

Two days ago my crts, keys, etc. expired on my OpenVPN server so I decided to rebuild with an up-to-date version of EasyRSA.

So, after some very useful tips from TinCanTech at Github, I finally successfully rebuilt my server crt, my client crts, my private keys, and DH PEM using the most recent version of EasyRSA, but was disappointed to find that, on the first two clients I have tested and after rechecking files several times, TLS is not "shaking hands."

Fri Sep 08 13:56:50 2023 us=540874 UDPv4 READ [0] from [AF_UNSPEC]: DATA UNDEF len=-1
Fri Sep 08 13:57:06 2023 us=561003 UDPv4 WRITE [14] to [AF_INET]192.168.0.1:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Sep 08 13:57:06 2023 us=561003 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Sep 08 13:57:06 2023 us=561003 UDPv4 READ [0] from [AF_UNSPEC]: DATA UNDEF len=-1
Fri Sep 08 13:57:36 2023 us=138342 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 08 13:57:36 2023 us=138342 TLS Error: TLS handshake failed

Network is fine.

I really have no idea where to start troubleshooting. Does anyone have any suggestions?
Top
Post Reply

Return to “Configuration”