Hello all ,
Can you help me please with issue ? I tun Open vpn client from a pc behind TMG to a remote site . the error is the following :
Wed Mar 02 12:10:42 2011 OpenVPN 2.1_rc19 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Jul 16 2009
Wed Mar 02 12:10:42 2011 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Wed Mar 02 12:10:42 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Wed Mar 02 12:10:53 2011 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Wed Mar 02 12:10:53 2011 LZO compression initialized
Wed Mar 02 12:10:53 2011 WARNING: normally if you use --mssfix and/or --fragment, you should also set --tun-mtu 1500 (currently it is 1400)
Wed Mar 02 12:10:53 2011 Control Channel MTU parms [ L:1442 D:138 EF:38 EB:0 ET:0 EL:0 ]
Wed Mar 02 12:10:53 2011 Data Channel MTU parms [ L:1442 D:1442 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Wed Mar 02 12:10:53 2011 Local Options hash (VER=V4): 'a6ae7d69'
Wed Mar 02 12:10:53 2011 Expected Remote Options hash (VER=V4): '006a55ce'
Wed Mar 02 12:10:53 2011 Socket Buffers: R=[8192->8192] S=[8192->8192]
Wed Mar 02 12:10:53 2011 UDPv4 link local (bound): [undef]:1194
Wed Mar 02 12:10:53 2011 UDPv4 link remote: xxxxxxxxx:1194
Wed Mar 02 12:11:54 2011 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Wed Mar 02 12:11:54 2011 TLS Error: TLS handshake failed
Wed Mar 02 12:11:54 2011 TCP/UDP: Closing socket
Wed Mar 02 12:11:54 2011 SIGUSR1[soft,tls-error] received, process restarting
Wed Mar 02 12:11:54 2011 Restart pause, 2 second(s)
-Open vpn Server is ok couse i can connect from another site
-I have already opened 1194 port on TMG
-no firewall on client
-TMG supports NAT not ROUTE
-traffic simulator on TMG seems fine
Allowed Traffic
Denied Traffic - destination URL host name could not be resolved
Rule Name: INTERNAL ALLCLIENTS ********VPN Access
Rule Order: 47
Additional information
From: Internal
To: External
Network Rule Name: Internet Access
Network Relationship: NAT
Protocol: OpenVPN
Can anyone advise please ??
TLS ERROR
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
-
janjust
- Forum Team
- Posts: 2703
- Joined: Fri Aug 20, 2010 2:57 pm
- Location: Amsterdam
- Contact:
Re: TLS ERROR
this
almost always suggests that a router or firewall is dropping packets somewhere along the way; try switch to 'mode tcp' to see if that helps.TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
-
kormoranos
- OpenVpn Newbie
- Posts: 2
- Joined: Wed Mar 02, 2011 9:23 am
Re: TLS ERROR
thank you for your reply!
that is from the configuration of the client or from the properties of the server ? Because i do not own the server side only the client side i can manage.
thanks in advance
that is from the configuration of the client or from the properties of the server ? Because i do not own the server side only the client side i can manage.
thanks in advance
-
janjust
- Forum Team
- Posts: 2703
- Joined: Fri Aug 20, 2010 2:57 pm
- Location: Amsterdam
- Contact:
Re: TLS ERROR
you will need to change both the client and the server. talk to your server admin, perhaps {s}he's already running a tcp-based instance.