TLS ERROR
Posted: Wed Mar 02, 2011 10:28 am
Hello all ,
Can you help me please with issue ? I tun Open vpn client from a pc behind TMG to a remote site . the error is the following :
Wed Mar 02 12:10:42 2011 OpenVPN 2.1_rc19 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Jul 16 2009
Wed Mar 02 12:10:42 2011 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Wed Mar 02 12:10:42 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Wed Mar 02 12:10:53 2011 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Wed Mar 02 12:10:53 2011 LZO compression initialized
Wed Mar 02 12:10:53 2011 WARNING: normally if you use --mssfix and/or --fragment, you should also set --tun-mtu 1500 (currently it is 1400)
Wed Mar 02 12:10:53 2011 Control Channel MTU parms [ L:1442 D:138 EF:38 EB:0 ET:0 EL:0 ]
Wed Mar 02 12:10:53 2011 Data Channel MTU parms [ L:1442 D:1442 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Wed Mar 02 12:10:53 2011 Local Options hash (VER=V4): 'a6ae7d69'
Wed Mar 02 12:10:53 2011 Expected Remote Options hash (VER=V4): '006a55ce'
Wed Mar 02 12:10:53 2011 Socket Buffers: R=[8192->8192] S=[8192->8192]
Wed Mar 02 12:10:53 2011 UDPv4 link local (bound): [undef]:1194
Wed Mar 02 12:10:53 2011 UDPv4 link remote: xxxxxxxxx:1194
Wed Mar 02 12:11:54 2011 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Wed Mar 02 12:11:54 2011 TLS Error: TLS handshake failed
Wed Mar 02 12:11:54 2011 TCP/UDP: Closing socket
Wed Mar 02 12:11:54 2011 SIGUSR1[soft,tls-error] received, process restarting
Wed Mar 02 12:11:54 2011 Restart pause, 2 second(s)
-Open vpn Server is ok couse i can connect from another site
-I have already opened 1194 port on TMG
-no firewall on client
-TMG supports NAT not ROUTE
-traffic simulator on TMG seems fine
Allowed Traffic
Denied Traffic - destination URL host name could not be resolved
Rule Name: INTERNAL ALLCLIENTS ********VPN Access
Rule Order: 47
Additional information
From: Internal
To: External
Network Rule Name: Internet Access
Network Relationship: NAT
Protocol: OpenVPN
Can anyone advise please ??
Can you help me please with issue ? I tun Open vpn client from a pc behind TMG to a remote site . the error is the following :
Wed Mar 02 12:10:42 2011 OpenVPN 2.1_rc19 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Jul 16 2009
Wed Mar 02 12:10:42 2011 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Wed Mar 02 12:10:42 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Wed Mar 02 12:10:53 2011 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Wed Mar 02 12:10:53 2011 LZO compression initialized
Wed Mar 02 12:10:53 2011 WARNING: normally if you use --mssfix and/or --fragment, you should also set --tun-mtu 1500 (currently it is 1400)
Wed Mar 02 12:10:53 2011 Control Channel MTU parms [ L:1442 D:138 EF:38 EB:0 ET:0 EL:0 ]
Wed Mar 02 12:10:53 2011 Data Channel MTU parms [ L:1442 D:1442 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Wed Mar 02 12:10:53 2011 Local Options hash (VER=V4): 'a6ae7d69'
Wed Mar 02 12:10:53 2011 Expected Remote Options hash (VER=V4): '006a55ce'
Wed Mar 02 12:10:53 2011 Socket Buffers: R=[8192->8192] S=[8192->8192]
Wed Mar 02 12:10:53 2011 UDPv4 link local (bound): [undef]:1194
Wed Mar 02 12:10:53 2011 UDPv4 link remote: xxxxxxxxx:1194
Wed Mar 02 12:11:54 2011 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Wed Mar 02 12:11:54 2011 TLS Error: TLS handshake failed
Wed Mar 02 12:11:54 2011 TCP/UDP: Closing socket
Wed Mar 02 12:11:54 2011 SIGUSR1[soft,tls-error] received, process restarting
Wed Mar 02 12:11:54 2011 Restart pause, 2 second(s)
-Open vpn Server is ok couse i can connect from another site
-I have already opened 1194 port on TMG
-no firewall on client
-TMG supports NAT not ROUTE
-traffic simulator on TMG seems fine
Allowed Traffic
Denied Traffic - destination URL host name could not be resolved
Rule Name: INTERNAL ALLCLIENTS ********VPN Access
Rule Order: 47
Additional information
From: Internal
To: External
Network Rule Name: Internet Access
Network Relationship: NAT
Protocol: OpenVPN
Can anyone advise please ??