Menu
What's new
By:
Filters Better Search

Unable to connect to my VPN server

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

B

bearchui

New Around Here
I am not able to connect to my VPN server successfully, please help.

Most of the steps, I am following this guide,
http://www.howtogeek.com/60774/connect-to-your-home-network-from-anywhere-with-openvpn-and-tomato/


Server Log
Sep 25 08:39:59 openvpn[25399]: TCP connection established with [AF_INET]116.226.231.34:8683
Sep 25 08:39:59 openvpn[25399]: 116.226.231.34:8683 TLS: Initial packet from [AF_INET]116.226.231.34:8683, sid=24399a2d a364bc2f
Sep 25 08:40:23 openvpn[25399]: 116.226.231.34:8683 VERIFY OK: depth=1, C=CN, ST=HK, L=HongKong, O=CCH, CN=CCH, emailAddress=bearchui@gmail.com
Sep 25 08:40:23 openvpn[25399]: 116.226.231.34:8683 VERIFY OK: depth=0, C=CN, ST=HK, O=CCH, CN=adam, emailAddress=bearchui@gmail.com
Sep 25 08:40:26 openvpn[25399]: 116.226.231.34:8683 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Sep 25 08:40:26 openvpn[25399]: 116.226.231.34:8683 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sep 25 08:40:26 openvpn[25399]: 116.226.231.34:8683 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Sep 25 08:40:26 openvpn[25399]: 116.226.231.34:8683 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sep 25 08:40:27 openvpn[25399]: 116.226.231.34:8683 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Sep 25 08:40:27 openvpn[25399]: 116.226.231.34:8683 [adam] Peer Connection Initiated with [AF_INET]116.226.231.34:8683
Sep 25 08:40:27 openvpn[25399]: adam/116.226.231.34:8683 MULTI_sva: pool returned IPv4=10.8.0.6, IPv6=(Not enabled)
Sep 25 08:40:27 openvpn[25399]: adam/116.226.231.34:8683 MULTI: Learn: 10.8.0.6 -> adam/116.226.231.34:8683
Sep 25 08:40:27 openvpn[25399]: adam/116.226.231.34:8683 MULTI: primary virtual IP for adam/116.226.231.34:8683: 10.8.0.6
Sep 25 08:40:28 openvpn[25399]: adam/116.226.231.34:8683 PUSH: Received control message: 'PUSH_REQUEST'
Sep 25 08:40:28 openvpn[25399]: adam/116.226.231.34:8683 send_push_reply(): safe_cap=940
Sep 25 08:40:28 openvpn[25399]: adam/116.226.231.34:8683 SENT CONTROL [adam]: 'PUSH_REPLY,route 192.168.1.0 255.255.255.0,dhcp-option DNS 192.168.1.1,route 10.8.0.1,topology net30,ping 15,ping-restart 60,ifconfig 10.8.0.6 10.8.0.5' (status=1)
Sep 25 08:41:00 openvpn[25399]: adam/116.226.231.34:8683 read TCPv4_SERVER: Connection timed out (code=145)
Sep 25 08:41:00 openvpn[25399]: adam/116.226.231.34:8683 Connection reset, restarting [0]
Sep 25 08:41:00 openvpn[25399]: adam/116.226.231.34:8683 SIGUSR1[soft,connection-reset] received, client-instance restarting
Sep 25 08:41:43 openvpn[25399]: TCP connection established with [AF_INET]116.226.231.34:8820
Sep 25 08:41:43 openvpn[25399]: 116.226.231.34:8820 TLS: Initial packet from [AF_INET]116.226.231.34:8820, sid=52a7fa46 e301ee06
Sep 25 08:42:34 openvpn[25399]: 116.226.231.34:8820 VERIFY OK: depth=1, C=CN, ST=HK, L=HongKong, O=CCH, CN=CCH, emailAddress=bearchui@gmail.com
Sep 25 08:42:34 openvpn[25399]: 116.226.231.34:8820 VERIFY OK: depth=0, C=CN, ST=HK, O=CCH, CN=adam, emailAddress=bearchui@gmail.com
Sep 25 08:42:43 openvpn[25399]: 116.226.231.34:8820 Connection reset, restarting [0]
Sep 25 08:42:43 openvpn[25399]: 116.226.231.34:8820 SIGUSR1[soft,connection-reset] received, client-instance restarting
Sep 25 08:42:48 openvpn[25399]: TCP connection established with [AF_INET]116.226.231.34:8894
Sep 25 08:42:48 openvpn[25399]: 116.226.231.34:8894 TLS: Initial packet from [AF_INET]116.226.231.34:8894, sid=111cc2af eb95fe4a
Sep 25 08:43:05 openvpn[25399]: 116.226.231.34:8894 VERIFY OK: depth=1, C=CN, ST=HK, L=HongKong, O=CCH, CN=CCH, emailAddress=bearchui@gmail.com
Sep 25 08:43:05 openvpn[25399]: 116.226.231.34:8894 VERIFY OK: depth=0, C=CN, ST=HK, O=CCH, CN=adam, emailAddress=bearchui@gmail.com
Sep 25 08:43:48 openvpn[25399]: 116.226.231.34:8894 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sep 25 08:43:48 openvpn[25399]: 116.226.231.34:8894 TLS Error: TLS handshake failed
Sep 25 08:43:48 openvpn[25399]: 116.226.231.34:8894 Fatal TLS error (check_tls_errors_co), restarting
Sep 25 08:43:48 openvpn[25399]: 116.226.231.34:8894 SIGUSR1[soft,tls-error] received, client-instance restarting
Sep 25 08:44:20 openvpn[25399]: TCP connection established with [AF_INET]116.226.231.34:8985
Sep 25 08:44:20 openvpn[25399]: 116.226.231.34:8985 TLS: Initial packet from [AF_INET]116.226.231.34:8985, sid=d713a149 f90e8d07
Sep 25 08:45:20 openvpn[25399]: 116.226.231.34:8985 Connection reset, restarting [-1]
Sep 25 08:45:20 openvpn[25399]: 116.226.231.34:8985 SIGUSR1[soft,connection-reset] received, client-instance restarting
Sep 25 08:45:29 openvpn[25399]: TCP connection established with [AF_INET]116.226.231.34:9096
Sep 25 08:45:29 openvpn[25399]: 116.226.231.34:9096 TLS: Initial packet from [AF_INET]116.226.231.34:9096, sid=334f0cef 07312ce1
Sep 25 08:46:29 openvpn[25399]: 116.226.231.34:9096 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sep 25 08:46:29 openvpn[25399]: 116.226.231.34:9096 TLS Error: TLS handshake failed
Sep 25 08:46:29 openvpn[25399]: 116.226.231.34:9096 Fatal TLS error (check_tls_errors_co), restarting
Sep 25 08:46:29 openvpn[25399]: 116.226.231.34:9096 SIGUSR1[soft,tls-error] received, client-instance restarting
Click to expand...

iptable of my VPN Server
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere
ACCEPT tcp -- anywhere anywhere tcp dpt:1194
ACCEPT all -- anywhere anywhere
ACCEPT tcp -- anywhere anywhere tcp dpt:1194
DROP all -- anywhere anywhere state INVALID
ACCEPT all -- anywhere anywhere state RELATED,ESTAB LISHED
ACCEPT all -- anywhere anywhere state NEW
DROP tcp -- anywhere anywhere tcp dpt:5916
ACCEPT all -- anywhere anywhere state NEW
ACCEPT udp -- anywhere anywhere udp spt:bootps dpt: bootpc
ACCEPT tcp -- anywhere router.asus.com tcp dpt:www
ACCEPT tcp -- anywhere router.asus.com tcp dpt:8443
ACCEPT tcp -- anywhere anywhere tcp dpt:8082
ACCEPT tcp -- anywhere anywhere tcp dpt:https
ACCEPT tcp -- anywhere anywhere tcp dpt:1723
ACCEPT gre -- anywhere anywhere
DROP all -- anywhere anywhere

Chain FORWARD (policy DROP)
target prot opt source destination
ACCEPT all -- anywhere anywhere
TCPMSS tcp -- anywhere anywhere tcp flags:SYN,RST/S YN TCPMSS clamp to PMTU
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere state RELATED,ESTAB LISHED
DROP all -- anywhere anywhere
DROP all -- anywhere anywhere state INVALID
ACCEPT all -- anywhere anywhere
DROP icmp -- anywhere anywhere
ACCEPT all -- anywhere anywhere ctstate DNAT
ACCEPT all -- anywhere anywhere

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

Chain FUPNP (0 references)
target prot opt source destination
ACCEPT tcp -- anywhere 192.168.1.2 tcp dpt:51413

Chain PControls (0 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere

Chain logaccept (0 references)
target prot opt source destination
LOG all -- anywhere anywhere state NEW LOG level warning tcp-sequence tcp-options ip-options prefix `ACCEPT '
ACCEPT all -- anywhere anywhere

Chain logdrop (0 references)
target prot opt source destination
LOG all -- anywhere anywhere state NEW LOG level warning tcp-sequence tcp-options ip-options prefix `DROP'
DROP all -- anywhere anywhere
Click to expand...
 
My first guess is there is a mismatch in your configuration. Make sure you use the same crypto on both sides. On the server side it complained about failing the TLS handshake.
 
Last edited:
You must log in or register to reply here.

Similar threads

T
[Help] Problems setting up OpenVPN
Replies
7
Views
512
Thookie
T
B
Unable to establish VPN connection to my PiVPN (ovpn) from my Asus RT-AC86U running Asuswrt-Merlin 386.14
Replies
1
Views
339
eibgrad
eibgrad
A
Devices connect to my openvpn server correctly but no traffic from server to client
Replies
6
Views
2K
ragtap
R
P
OVPN Problem. Asus rt ax56u (latest merlin firmware
Replies
9
Views
2K
pattox
P
octopus
  • Locked
Solved Can you connect to Wireguard server from wan side?
Replies
17
Views
2K
octopus
octopus
Similar threads
Thread starter Title Forum Replies Date
N Solved Unable to connect to VPN server with self-signed certificate Asuswrt-Merlin 0
SevenFactors Clients Unable to Connect to Guest Network After Firmware Upgrade Asuswrt-Merlin 2
D False alert for "Unable to connect to the Internet" Asuswrt-Merlin 3
E Unable to add GT-AX11000 as an AiMesh node to GT-BE98 PRO router Asuswrt-Merlin 0
I Unable to add DSL-68U to aimesh network as node Asuswrt-Merlin 11
B RT-BE96U unable to update from stock 3.0.0.6.102_37024 Asuswrt-Merlin 11
B Unable to establish VPN connection to my PiVPN (ovpn) from my Asus RT-AC86U running Asuswrt-Merlin 386.14 Asuswrt-Merlin 1
ali. Access point mode: unable to use AirPlay Asuswrt-Merlin 3
K Have global ipv6 address but unable to access internet over ipv6 Asuswrt-Merlin 45
S Unable to use port forward on the 2.5 Gbps WAN port Asuswrt-Merlin 1

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 749 (members: 36, guests: 713)
Top