#1 2017-06-24 19:16:44

fxfxfx
Trusted Member
From: Denmark
Registered: 2016-03-04
Posts: 47

[SOLVED] OpenVPN (Nyr) trouble with LES (PHX)

I have used Nyr's OpenVPN repeatedly during the years. Also with LES. Never had any trouble.

Needing a US VPN for pluto.tv, I set about as I have before on LES; activated TUN/Tap and installed Nyr's OpenVPN. Running on a completely fresh and clean Debian Jessie @ PHX. Also tried upgrading to Debian Stretch. No change.

I have set my internal/LES (192.168.102.xx) IP (detected by the script) and the external IP correctly (104.161.79.yy), and the OpenVPN port (xx05) is set within my (xx01-xx20) range. Iptables is untouched and "accept" for in, out and forwarding.

Also tried Angristan's script for good measure. Same deal.

Sat Jun 24 20:44:51 2017 OpenVPN 2.3.10 i686-pc-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [MH] [IPv6] built on Feb  2 2016
Sat Jun 24 20:44:51 2017 library versions: OpenSSL 1.0.2g  1 Mar 2016, LZO 2.08
Sat Jun 24 20:44:51 2017 Control Channel Authentication: tls-auth using INLINE static key file
Sat Jun 24 20:44:51 2017 Outgoing Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
Sat Jun 24 20:44:51 2017 Incoming Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
Sat Jun 24 20:44:51 2017 Socket Buffers: R=[163840->163840] S=[163840->163840]
Sat Jun 24 20:44:51 2017 UDPv4 link local: [undef]
Sat Jun 24 20:44:51 2017 UDPv4 link remote: [AF_INET]104.161.79.YY:9905
Sat Jun 24 20:45:51 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sat Jun 24 20:45:51 2017 TLS Error: TLS handshake failed

Locally (Lubuntu 16.04.2), I'm connecting just fine to other VPNs I run outside of LES - crowncloud, private family-hosted servers abroad, etc. So I can't see anything blocking the connection attempt on my end, as my OpenVPN client connects flawlessly everywhere else than LES.

Any ideas - or can someone confirm that they can indeed install and run the current (june 24th) Nyr or Angristan scripts and successfully connect an OpenVPN client on LES, preferably PHX?

Last edited by fxfxfx (2017-07-01 12:23:38)

Offline

#2 2017-06-24 19:49:13

WSS
Trusted Member
Registered: 2016-12-22
Posts: 255

Re: [SOLVED] OpenVPN (Nyr) trouble with LES (PHX)

What happens if you try to connect via IPv6?


RbyeR4Nm.png

Offline

#3 2017-06-24 20:40:47

fxfxfx
Trusted Member
From: Denmark
Registered: 2016-03-04
Posts: 47

Re: [SOLVED] OpenVPN (Nyr) trouble with LES (PHX)

I haven't taken the IPv6 plunge yet in my "homelab" and I wouldn't know how to try to connect to LES via IPv6. I am happy cruising and dabbling in OSI layers in IPv4 smile Well, at least I used to - until OpenVPN stopped me today...at least at LES/PHX. I can successfully connect via OpenVPN at other hosting companies and private servers, as usual.

Offline

#4 2017-06-25 11:58:34

fxfxfx
Trusted Member
From: Denmark
Registered: 2016-03-04
Posts: 47

Re: [SOLVED] OpenVPN (Nyr) trouble with LES (PHX)

Also tried on Ubuntu 14.04 and 16.04 today. As well as installing OpenVPN with PiVPN. Same deal - no luck with the handshake.

Offline

#5 2017-06-25 12:18:01

fxfxfx
Trusted Member
From: Denmark
Registered: 2016-03-04
Posts: 47

Re: [SOLVED] OpenVPN (Nyr) trouble with LES (PHX)

Syslog...

[email protected]:~$ sudo tail /var/log/syslog
Jun 25 14:17:38 routerus systemd[1]: [email protected]: Control process exited, code=exited status=1
Jun 25 14:17:38 routerus systemd[1]: Failed to start OpenVPN connection to server.
Jun 25 14:17:38 routerus systemd[1]: [email protected]: Unit entered failed state.
Jun 25 14:17:38 routerus systemd[1]: [email protected]: Failed with result 'exit-code'.
Jun 25 14:18:20 routerus systemd[1]: Starting OpenVPN connection to server...
Jun 25 14:18:20 routerus systemd[1]: Started OpenVPN service.
Jun 25 14:18:20 routerus systemd[1]: [email protected]: Control process exited, code=exited status=1
Jun 25 14:18:20 routerus systemd[1]: Failed to start OpenVPN connection to server.
Jun 25 14:18:20 routerus systemd[1]: [email protected]: Unit entered failed state.
Jun 25 14:18:20 routerus systemd[1]: [email protected]: Failed with result 'exit-code'.

Offline

#6 2017-06-25 23:29:00

WSS
Trusted Member
Registered: 2016-12-22
Posts: 255

Re: [SOLVED] OpenVPN (Nyr) trouble with LES (PHX)

Just for edification- what's the last octet of your (private) IP?


RbyeR4Nm.png

Offline

#7 2017-06-27 04:47:18

fxfxfx
Trusted Member
From: Denmark
Registered: 2016-03-04
Posts: 47

Re: [SOLVED] OpenVPN (Nyr) trouble with LES (PHX)

99. Thanks in advance.

Offline

#8 2017-06-27 05:56:47

WSS
Trusted Member
Registered: 2016-12-22
Posts: 255

Re: [SOLVED] OpenVPN (Nyr) trouble with LES (PHX)

Your port assign seems to be correct, then - sorry, always have to check.  Just for giggles, have you tried to enable TCP just to see if you can get an actual handshake?


RbyeR4Nm.png

Offline

#9 2017-07-01 12:22:41

fxfxfx
Trusted Member
From: Denmark
Registered: 2016-03-04
Posts: 47

Re: [SOLVED] OpenVPN (Nyr) trouble with LES (PHX)

Managed to get OpenVPN to run by commenting out the limitNPROC line in
  /lib/systemd/system/[email protected] - as a temporary workaround.

Offline

Board footer