Hi, I have an openvpn network with 6 devices (rut955 server and 6 rut955 clients). I try to add other devices configured in my openvpn and they don't connect me.
The error was TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity). It seems that the problem was with openvpn UDP communication. I have changed it to TCP server and the clients as well (TCP Clients). The error no longer appears but still does not report. The old teams continue to communicate and the new ones do not. The following error appears:
daemon.warn openvpn(client_torrejon)[16079]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
daemon.notice openvpn(client_torrejon)[16079]: Re-using SSL/TLS context
daemon.notice openvpn(client_torrejon)[16079]: LZO compression initializing
daemon.notice openvpn(client_torrejon)[16079]: Control Channel MTU parms [ L:1624 D:1210 EF:40 EB:0 ET:0 EL:3 ]
daemon.notice openvpn(client_torrejon)[16079]: Data Channel MTU parms [ L:1624 D:1450 EF:124 EB:406 ET:0 EL:3 ]
daemon.notice openvpn(client_torrejon)[16079]: Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
daemon.notice openvpn(client_torrejon)[16079]: Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
daemon.notice openvpn(client_torrejon)[16079]: TCP/UDP: Preserving recently used remote address: [AF_INET]xx.xx.xx.xx:1194
daemon.notice openvpn(client_torrejon)[16079]: Socket Buffers: R=[87380->87380] S=[16384->16384]
daemon.notice openvpn(client_torrejon)[16079]: Attempting to establish TCP connection with [AF_INET]80.28.204.27:1194 [nonblock]
2021 daemon.err openvpn(client_torrejon)[16079]: TCP: connect to [AF_INET]80.28.204.27:1194 failed: Connection timed out
daemon.notice openvpn(client_torrejon)[16079]: SIGUSR1[connection failed(soft),init_instance] received, process restarting
Normally, I think that factory resetting the server and programming it again should work, but I can't. TLS certificates are not because they were already tested. What could it be? Is there any device limit for openvpn? and i have ipsec and openvpn communications, would it be troublesome?
Thanks.