Hello,
I cannot get this to work using TRB 140 as OpenVPN client.
OpenVPN configuration file:
#OpenVPN Client conf
tls-client
client
nobind
dev tun
proto udp
tun-mtu 1400
remote x.ns.net 1194
cipher AES-256-CBC
auth SHA512
tls-auth ta.key
verb 3
ns-cert-type server
verify-x509-name x.ns.net name
System Log on TRB 140:
Sun Sep 6 09:57:37 2020 daemon.notice openvpn(SWU)[6141]: OpenVPN 2.4.5 arm-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD]
Sun Sep 6 09:57:37 2020 daemon.notice openvpn(SWU)[6141]: library versions: OpenSSL 1.0.2u 20 Dec 2019, LZO 2.10
Sun Sep 6 09:57:37 2020 daemon.warn openvpn(SWU)[6141]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Sun Sep 6 09:57:37 2020 daemon.notice openvpn(SWU)[6141]: Control Channel MTU parms [ L:1621 D:1212 EF:38 EB:0 ET:0 EL:3 ]
Sun Sep 6 09:57:37 2020 daemon.notice openvpn(SWU)[6141]: Data Channel MTU parms [ L:1621 D:1450 EF:121 EB:406 ET:0 EL:3 ]
Sun Sep 6 09:57:37 2020 daemon.notice openvpn(SWU)[6141]: Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1601,tun-mtu 1500,proto UDPv4,cipher AES-256-CBC,auth SHA512,keysize 256,key-method 2,tls-client'
Sun Sep 6 09:57:37 2020 daemon.notice openvpn(SWU)[6141]: Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1601,tun-mtu 1500,proto UDPv4,cipher AES-256-CBC,auth SHA512,keysize 256,key-method 2,tls-server'
Sun Sep 6 09:57:37 2020 daemon.notice openvpn(SWU)[6141]: TCP/UDP: Preserving recently used remote address: [AF_INET]84.177.x.y:1194
Sun Sep 6 09:57:37 2020 daemon.notice openvpn(SWU)[6141]: Socket Buffers: R=[163840->163840] S=[163840->163840]
Sun Sep 6 09:57:37 2020 daemon.notice openvpn(SWU)[6141]: UDP link local: (not bound)
Sun Sep 6 09:57:37 2020 daemon.notice openvpn(SWU)[6141]: UDP link remote: [AF_INET]84.177.x.y:1194
Sun Sep 6 09:58:37 2020 daemon.err openvpn(SWU)[6141]: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sun Sep 6 09:58:37 2020 daemon.err openvpn(SWU)[6141]: TLS Error: TLS handshake failed
Sun Sep 6 09:58:37 2020 daemon.notice openvpn(SWU)[6141]: TCP/UDP: Closing socket
Sun Sep 6 09:58:37 2020 daemon.notice openvpn(SWU)[6141]: SIGUSR1[soft,tls-error] received, process restarting
Certificates:
Downloaded from OpenVPN server as PKCS12 and generated ca, client certificate and client key with OpenSSL.
Any ideas how to configure to get it working?