Koozali.org: home of the SME Server
Obsolete Releases => SME 8.x Contribs => Topic started by: ddougan on September 16, 2012, 07:23:07 AM
-
After a successful implementation on an 8.0 test server on my LAN, I installed OpenVPN-Bridge and PHPki on a client system running SME Server 8.0. The installation is pretty straightforward and I've checked it subsequently, including the certificate files; however, I can't get a connection. In the client log, I see this error:
2012-09-15 22:15:13 us=96051 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2012-09-15 22:15:13 us=96226 TLS Error: TLS handshake failed
The research I've carried out indicates a certificate error; however, I've recreated both client and server certificate files and am still getting this error.
This server previously (on 7.x) ran the older Swerts-Knudsen contrib; however, I migrated to the Bridge contrib as I had issues with the older one.
I'd appreciate any ideas or insights.
Thanks,
Des
-
I had this identical error just last week on a different platform. Is DEFINITELY a certificate error.
also The Swerts Knudsen open vpn howto works fine on SME8. There were some issues but the howto has recently been updated. This is solid as for me. I prefer routing to bridging. Seems to be less resource intensive.
HTH
Peter
-
Peter,
Thanks for taking the time to reply. In this instance, it wasn't the certs (at least, not specifically). I ended up uninstalling it all, including PHPki, then reinstalling. I did find that the version of OpenVPN I'd installed for testing the older contrib was newer than the one downloaded by the Bridge contrib when I reinstalled.
I recreated the certs from scratch (using PHPki) then applied them to the Bridge settings, downloaded the p12 file and this time it connected no problem...
I'm just about to try it on a PC (I connected successfully via Tunnelblick on OS X), but I don't foresee any issues there.
Regards,
Des