Hello!
I generated in Ubuntu, the CA, DH, crt ans .key via easy-rsa exported them and imported them into the my RUT, but i cannot save the config of the OpeVPN server, because something seems incompatiple - how could i check what of the certifcates etc. are not correct and why?
Thank you very much!!
Hello,
Could you please specify which configuration parameter is being shown as invalid?
Best regards,
It just states invalid - i see no kind of visible mardowns which part is invalid:
I recommend upgrading your device to the latest firmware version 7.09.4 without selecting “Keep settings” for testing purposes. Please try this, configure OpenVPN on the fresh device, and let me know if the error persists.
Best regards,
Hello!
After the Firmware Update i could save the openvpn config.
I didnt see it in the guide, but do i have to add an rule for the wan to allow the vpn services?
For me it would be obious, but i couldnt fimd anything in official docs and i can ping the public ip of the rut, but cannto connect with opren vpn and there is nothing in the log of someone tries to connect to the rut.
I got this in the openvpn connect:
⏎[Oct 8, 2024, 08:40:51] Connecting to [62.112.81.213]:1194 (62.112.81.213) via UDP
⏎[Oct 8, 2024, 08:41:00] Server poll timeout, trying next remote entry...
⏎[Oct 8, 2024, 08:41:00] EVENT: RECONNECTING ⏎[Oct 8, 2024, 08:41:00] EVENT: RESOLVE ⏎[Oct 8, 2024, 08:41:00] Contacting 62.112.81.213:1194 via UDP
⏎[Oct 8, 2024, 08:41:00] EVENT: WAIT ⏎[Oct 8, 2024, 08:41:00] WinCommandAgent: transmitting bypass route to 62.112.81.213
{
"host" : "62.112.81.213",
"ipv6" : false
}
⏎[Oct 8, 2024, 08:41:01] Connecting to [62.112.81.213]:1194 (62.112.81.213) via UDP
⏎[Oct 8, 2024, 08:41:10] EVENT: CONNECTION_TIMEOUT BYTES_OUT : 840
PACKETS_OUT : 60
CONNECTION_TIMEOUT : 1
N_RECONNECT : 5
⏎[Oct 8, 2024, 08:41:10] EVENT: DISCONNECTED ⏎[Oct 8, 2024, 08:41:41] OpenVPN core 3.10_qa win x86_64 64-bit OVPN-DCO built on Jul 17 2024 14:22:15
⏎[Oct 8, 2024, 08:41:41] Frame=512/2112/512 mssfix-ctrl=1250
⏎[Oct 8, 2024, 08:41:41] NOTE: This configuration contains options that were not used:
⏎[Oct 8, 2024, 08:41:41] Unsupported option (ignored)
⏎[Oct 8, 2024, 08:41:41] 0 [resolv-retry] [infinite]
⏎[Oct 8, 2024, 08:41:41] 1 [persist-key]
⏎[Oct 8, 2024, 08:41:41] 2 [persist-tun]
⏎[Oct 8, 2024, 08:41:41] EVENT: RESOLVE ⏎[Oct 8, 2024, 08:41:41] Contacting 62.112.81.213:1194 via UDP
⏎[Oct 8, 2024, 08:41:41] EVENT: WAIT ⏎[Oct 8, 2024, 08:41:41] WinCommandAgent: transmitting bypass route to 62.112.81.213
And in the rut the OpenVPN log only contains the log of the initiation of the service, nothing else:
{
"host" : "62.112.81.213",
"ipv6" : false
}
⏎[Oct 8, 2024, 08:01:31] Connecting to [62.112.81.213]:1194 (62.112.81.213) via UDP
⏎[Oct 8, 2024, 08:01:41] Server poll timeout, trying next remote entry...
⏎[Oct 8, 2024, 08:01:41] EVENT: RECONNECTING ⏎[Oct 8, 2024, 08:01:41] EVENT: RESOLVE ⏎[Oct 8, 2024, 08:01:41] Contacting 62.112.81.213:1194 via UDP
⏎[Oct 8, 2024, 08:01:41] EVENT: WAIT ⏎[Oct 8, 2024, 08:01:41] WinCommandAgent: transmitting bypass route to 62.112.81.213
{
"host" : "62.112.81.213",
"ipv6" : false
}
⏎[Oct 8, 2024, 08:01:41] Connecting to [62.112.81.213]:1194 (62.112.81.213) via UDP
⏎[Oct 8, 2024, 08:01:51] Server poll timeout, trying next remote entry...
⏎[Oct 8, 2024, 08:01:51] EVENT: RESOLVE ⏎[Oct 8, 2024, 08:01:51] EVENT: RECONNECTING ⏎[Oct 8, 2024, 08:01:51] Contacting 62.112.81.213:1194 via UDP
⏎[Oct 8, 2024, 08:01:51] EVENT: WAIT ⏎[Oct 8, 2024, 08:01:51] WinCommandAgent: transmitting bypass route to 62.112.81.213
{
"host" : "62.112.81.213",
"ipv6" : false
}
⏎[Oct 8, 2024, 08:01:51] Connecting to [62.112.81.213]:1194 (62.112.81.213) via UDP
⏎[Oct 8, 2024, 08:40:30] Server poll timeout, trying next remote entry...
⏎[Oct 8, 2024, 08:40:30] EVENT: RECONNECTING ⏎[Oct 8, 2024, 08:40:30] EVENT: RESOLVE ⏎[Oct 8, 2024, 08:40:30] Contacting 62.112.81.213:1194 via UDP
⏎[Oct 8, 2024, 08:40:30] EVENT: WAIT ⏎[Oct 8, 2024, 08:40:30] WinCommandAgent: transmitting bypass route to 62.112.81.213
{
"host" : "62.112.81.213",
"ipv6" : false
}
⏎[Oct 8, 2024, 08:40:31] Connecting to [62.112.81.213]:1194 (62.112.81.213) via UDP
⏎[Oct 8, 2024, 08:40:40] Server poll timeout, trying next remote entry...
⏎[Oct 8, 2024, 08:40:40] EVENT: RECONNECTING ⏎[Oct 8, 2024, 08:40:40] EVENT: RESOLVE ⏎[Oct 8, 2024, 08:40:40] Contacting 62.112.81.213:1194 via UDP
⏎[Oct 8, 2024, 08:40:40] EVENT: WAIT ⏎[Oct 8, 2024, 08:40:40] WinCommandAgent: transmitting bypass route to 62.112.81.213
{
"host" : "62.112.81.213",
"ipv6" : false
}
⏎[Oct 8, 2024, 08:40:41] Connecting to [62.112.81.213]:1194 (62.112.81.213) via UDP
⏎[Oct 8, 2024, 08:40:50] Server poll timeout, trying next remote entry...
⏎[Oct 8, 2024, 08:40:50] EVENT: RECONNECTING ⏎[Oct 8, 2024, 08:40:50] EVENT: RESOLVE ⏎[Oct 8, 2024, 08:40:50] Contacting 62.112.81.213:1194 via UDP
⏎[Oct 8, 2024, 08:40:50] EVENT: WAIT ⏎[Oct 8, 2024, 08:40:50] WinCommandAgent: transmitting bypass route to 62.112.81.213
{
"host" : "62.112.81.213",
"ipv6" : false
}
⏎[Oct 8, 2024, 08:40:51] Connecting to [62.112.81.213]:1194 (62.112.81.213) via UDP
⏎[Oct 8, 2024, 08:41:00] Server poll timeout, trying next remote entry...
⏎[Oct 8, 2024, 08:41:00] EVENT: RECONNECTING ⏎[Oct 8, 2024, 08:41:00] EVENT: RESOLVE ⏎[Oct 8, 2024, 08:41:00] Contacting 62.112.81.213:1194 via UDP
⏎[Oct 8, 2024, 08:41:00] EVENT: WAIT ⏎[Oct 8, 2024, 08:41:00] WinCommandAgent: transmitting bypass route to 62.112.81.213
{
"host" : "62.112.81.213",
"ipv6" : false
}
⏎[Oct 8, 2024, 08:41:01] Connecting to [62.112.81.213]:1194 (62.112.81.213) via UDP
⏎[Oct 8, 2024, 08:41:10] EVENT: CONNECTION_TIMEOUT BYTES_OUT : 840
PACKETS_OUT : 60
CONNECTION_TIMEOUT : 1
N_RECONNECT : 5
⏎[Oct 8, 2024, 08:41:10] EVENT: DISCONNECTED ⏎[Oct 8, 2024, 08:41:41] OpenVPN core 3.10_qa win x86_64 64-bit OVPN-DCO built on Jul 17 2024 14:22:15
⏎[Oct 8, 2024, 08:41:41] Frame=512/2112/512 mssfix-ctrl=1250
⏎[Oct 8, 2024, 08:41:41] NOTE: This configuration contains options that were not used:
⏎[Oct 8, 2024, 08:41:41] Unsupported option (ignored)
⏎[Oct 8, 2024, 08:41:41] 0 [resolv-retry] [infinite]
⏎[Oct 8, 2024, 08:41:41] 1 [persist-key]
⏎[Oct 8, 2024, 08:41:41] 2 [persist-tun]
⏎[Oct 8, 2024, 08:41:41] EVENT: RESOLVE ⏎[Oct 8, 2024, 08:41:41] Contacting 62.112.81.213:1194 via UDP
⏎[Oct 8, 2024, 08:41:41] EVENT: WAIT ⏎[Oct 8, 2024, 08:41:41] WinCommandAgent: transmitting bypass route to 62.112.81.213
{
"host" : "62.112.81.213",
"ipv6" : false
}
⏎[Oct 8, 2024, 08:41:42] Connecting to [62.112.81.213]:1194 (62.112.81.213) via UDP
⏎[Oct 8, 2024, 08:41:51] Server poll timeout, trying next remote entry...
⏎[Oct 8, 2024, 08:41:51] EVENT: RECONNECTING ⏎[Oct 8, 2024, 08:41:51] EVENT: RESOLVE ⏎[Oct 8, 2024, 08:41:51] Contacting 62.112.81.213:1194 via UDP
⏎[Oct 8, 2024, 08:41:51] EVENT: WAIT ⏎[Oct 8, 2024, 08:41:51] WinCommandAgent: transmitting bypass route to 62.112.81.213
{
"host" : "62.112.81.213",
"ipv6" : false
}
I can ping the ip with online tools, but the port 1194 is always not reachable from those tools.
There seems to be an stock firewall rule for open vpn:
I resetted the RUT and now i get:
Tue Oct 8 10:36:38 2024 dco connect error: Das Zeitlimit für die Semaphore wurde erreicht. (errno=121)
And finally got something in the RUT vpn log:
Tue Oct 8 10:34:49 2024 daemon.warn openvpn(testsrv)[10758]: 45.84.89.3:63007 WARNING: Bad encapsulated packet length from peer (5635), which must be > 0 and <= 1768 -- please ensure that --tun-mtu or --link-mtu is equal on both peers -- this condition could also indicate a possible active attack on the TCP link -- [Attempting restart...]
i creae a new one because the mail issue is solved
after factory reset
This topic was automatically closed 40 hours after the last reply. New replies are no longer allowed.