client and server handshake in openvpn

[wahabraja]

Hi everyone,

I want to know how the OpenVPN server handshake with its clients, wanted to verify the handshake process through wireshark but didn't find any packet containing client or server hello. Is there any other process or underlying protocol is used?

Any help in this regard would be highly appreciated.

Regards

[openvpn_inc]

I know this is a very old post (and the poster never came back since 2 days after registering), but in case someone else wonders the same thing, it simply is not possible in network sniffing, because all packets are encrypted.

I suppose you could turn off encryption and sniff that traffic, but it might be quicker to just Read The Fine Source Code.

regards, rob0

[bekzclz11]

The SSL or TLS handshake enables the SSL or TLS client and server to establish the secret keys with which they communicate. This section provides a summary of the steps that enable the SSL or TLS client and server to communicate with each other: Agree on the version of the protocol to use.

[bekzclz11]

OpenVPN is a full-featured SSL VPN which implements OSI layer 2 or 3 secure network extension using the industry standard SSL/TLS protocol, supports flexible client authentication methods based on certificates, smart cards, and/or username/password credentials, and allows user or group-specific access control policies ...

To fix this issue, you must add remote-cert-tls server to the OpenVPN file that is generated from the BR500. Changing this file allows the server to check the certificate again when connecting to the OpenVPN.