New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
I'm trying to change the port to 443 from 1194. But it's not allowing me to connect. I've tried changing all the port numbers in the tutorial. I've even turned off my firewall just to test it out but nothing so far.
Port 443 is the https port... Do you really want it on this port? To change a port you only need to change the port in the server.conf file and update your firewall if you have one.
Yes I want to try running it on that port. Openvpn's normal port is blocked in my school. I changed the server.conf and client side and also updated my firewall to allow port 443. Here are the messages I get before it just hangs there:
Wed Oct 30 01:34:15 2013 OpenVPN 2.3.2 i686-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [eurephia] [IPv6] built on Aug 22 2013
Wed Oct 30 01:34:15 2013 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Wed Oct 30 01:34:15 2013 Need hold release from management interface, waiting...
Wed Oct 30 01:34:16 2013 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Wed Oct 30 01:34:16 2013 MANAGEMENT: CMD 'state on'
Wed Oct 30 01:34:16 2013 MANAGEMENT: CMD 'log all on'
Wed Oct 30 01:34:16 2013 MANAGEMENT: CMD 'hold off'
Wed Oct 30 01:34:16 2013 MANAGEMENT: CMD 'hold release'
Wed Oct 30 01:34:16 2013 Control Channel Authentication: using 'ta.key' as a OpenVPN static key file
Wed Oct 30 01:34:16 2013 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Oct 30 01:34:16 2013 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Oct 30 01:34:16 2013 WARNING: normally if you use --mssfix and/or --fragment, you should also set --tun-mtu 1500 (currently it is 1574)
Wed Oct 30 01:34:16 2013 Socket Buffers: R=[8192->8192] S=[8192->8192]
Wed Oct 30 01:34:16 2013 UDPv4 link local: [undef]
Wed Oct 30 01:34:16 2013 UDPv4 link remote: [AF_INET]95.47.118.121:443
Wed Oct 30 01:34:16 2013 MANAGEMENT: >STATE:1383122056,WAIT,,,
please use proper formatting.
yes, the blog post on client config is no longer on LEB @mpkossen
Few weeks ago I had to google one of those LEB leechers/copycat blogs to find a copy of "Munin Amass" article which is (still) missing. I don't like to support those blogs, but sometimes they could be helpful too...
Probably the cluster ate it.
I've asked Alex to look at this, because they are indeed missing. I don't think I have a backup of those two specific articles (I have drafts for some others).
Thanks to the copy-cat, I got those two back. I will repost them later, as they need to be formatted again, etc. But at least they'll be back soon.
@mpkossen
Sometimes those sites are useful :P
In this case, yes :P But they're going to get a DMCA, so...
How? You're stealing their content :P
try to use softether, so much easier to set up and mantain
Wed Oct 30 12:33:34 2013 OpenVPN 2.3.2 i686-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [eurephia] [IPv6] built on Aug 22 2013
Wed Oct 30 12:33:34 2013 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Wed Oct 30 12:33:34 2013 Need hold release from management interface, waiting...
Wed Oct 30 12:33:34 2013 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Wed Oct 30 12:33:34 2013 MANAGEMENT: CMD 'state on'
Wed Oct 30 12:33:34 2013 MANAGEMENT: CMD 'log all on'
Wed Oct 30 12:33:35 2013 MANAGEMENT: CMD 'hold off'
Wed Oct 30 12:33:35 2013 MANAGEMENT: CMD 'hold release'
Wed Oct 30 12:33:35 2013 Control Channel Authentication: using 'ta.key' as a OpenVPN static key file
Wed Oct 30 12:33:35 2013 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Oct 30 12:33:35 2013 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Oct 30 12:33:35 2013 WARNING: normally if you use --mssfix and/or --fragment, you should also set --tun-mtu 1500 (currently it is 1574)
Wed Oct 30 12:33:35 2013 Socket Buffers: R=[8192->8192] S=[8192->8192]
Wed Oct 30 12:33:35 2013 UDPv4 link local: [undef]
Wed Oct 30 12:33:35 2013 UDPv4 link remote: [AF_INET]95.47.118.121:443
Wed Oct 30 12:33:35 2013 MANAGEMENT: >STATE:1383161615,WAIT,,,
The above are the logs which I wasn't able to connect.
I checked the logs.
TLS key negotiation failed to occur within 60 seconds
TLS handshake failed
What is that?
Probably a wrong ta.key file
If you have debian installed, then I'd recommend going to the lowendspirit forums, there's a auto installer script there for OpenVPN and it works perfectly.
thishttps://github.com/Nyr/openvpn-install script works fine to me, just edit config after installation. Its really simple
Problem Solved. Thanks for all the suggestions guys.