FOR TIPS, gUIDES & TUTORIALS

subscribe to our Youtube

GO TO YOUTUBE

14455 questions

17168 answers

28195 comments

0 members

We are migrating to our new platform at https://community.teltonika.lt. Moving forward, you can continue discussions on this new platform. This current platform will be temporarily maintained for reference purposes.
0 votes
281 views 2 comments
by anonymous
All,

Although the RUT240 has certificates but they do not work. I used this certificates for openVPN (to create a .ovpn file) but I don't get it working. Has someone has any ideas how to go forward?

Thanks for your support.

Johan
by anonymous

I think a pretty good description can be found here:

https://wiki.teltonika-networks.com/view/OpenVPN_configuration_examples

2 Answers

0 votes
by anonymous
I assume you want to use your 240 as an OpenVPN server is that correct?
by anonymous
That's correct.
0 votes
by anonymous
The link where you referring to it's about openVPN between 2 RUT routers. While I want to use the RUT240 as openVPN server and on a Windows PC an openVPN Client.

With the 7.x.x release, certificates can be generated by the RUT240 itself and you can assign these to the openVPN server but neverless I cannot connect to it using the openVPN client on a Windows 10 machine.

On the Windows openVPN client I see this in the log:

2022-01-07 21:55:11 us=470901 UDP link remote: [AF_INET]178.225.247.212:1194

2022-01-07 21:55:11 us=470901 MANAGEMENT: >STATE:1641588911,WAIT,,,,,,

2022-01-07 21:56:11 us=708841 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)

2022-01-07 21:56:11 us=708841 TLS Error: TLS handshake failed

2022-01-07 21:56:11 us=708841 TCP/UDP: Closing socket

while on the RUT240 I see:

Sun Jan  9 11:04:53 2022 daemon.notice openvpn(Server)[29764]: MULTI: multi_create_instance called

Sun Jan  9 11:04:53 2022 daemon.notice openvpn(Server)[29764]: IP_ADDRESS:63450 Re-using SSL/TLS context

Sun Jan  9 11:04:53 2022 daemon.notice openvpn(Server)[29764]: IP_ADDRESS:63450 LZO compression initializing

Sun Jan  9 11:04:53 2022 daemon.notice openvpn(Server)[29764]: IP_ADDRESS:63450 Control Channel MTU parms [ L:1622 D:1212 EF:38 EB:0 ET:0 EL:3 ]

Sun Jan  9 11:04:53 2022 daemon.notice openvpn(Server)[29764]: IP_ADDRESS:63450 Data Channel MTU parms [ L:1622 D:1450 EF:122 EB:406 ET:0 EL:3 ]

Sun Jan  9 11:04:53 2022 daemon.notice openvpn(Server)[29764]: IP_ADDRESS:63450 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1550,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-GCM,auth [null-digest],keysize 256,key-method 2,tls-server'

Sun Jan  9 11:04:53 2022 daemon.notice openvpn(Server)[29764]: IP_ADDRESS:63450 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1550,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-GCM,auth [null-digest],keysize 256,key-method 2,tls-client'

Sun Jan  9 11:04:53 2022 daemon.notice openvpn(Server)[29764]: IP_ADDRESS:63450 TLS: Initial packet from [AF_INET]IP_ADDRESS:63450, sid=2f3d45f4 fc131f8e

(replaced the IP address with IP_ADDRESS