Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Client OpenVPN not working

    Scheduled Pinned Locked Moved OpenVPN
    3 Posts 1 Posters 2.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • valnarV
      valnar
      last edited by

      I'm not sure when it stopped working, but sometime after the upgrade to 2.15.  I blew away my OpenVPN config, certs, FW rules and started over using the basic instructions on the Wiki.  Everything looks setup right, but my device (iPhone….haven't tried Windows yet) still cannot connect.  It just sits at "connecting".  I even upgraded to a 2.2 beta and tried it all again.  New certs, user's, OpenVPN wizard, etc.  No dice.

      Here is the log.  Any ideas?

      2014-10-23 11:20:53 ----- OpenVPN Start ----- OpenVPN core 3.0 ios arm64 64-bit
      2014-10-23 11:20:53 UNUSED OPTIONS
      0 [persist-tun]
      1 [persist-key]
      4 [tls-client]
      7 [lport] [0]
      8 [verify-x509-name] [openvpn] [name] 
      
      2014-10-23 11:20:53 EVENT: RESOLVE
      2014-10-23 11:20:53 Contacting 10.20.30.40:1194 via UDP
      2014-10-23 11:20:53 EVENT: WAIT
      2014-10-23 11:20:53 SetTunnelSocket returned 1
      2014-10-23 11:20:53 Connecting to myfirewall.dyndns.org:1194 (10.20.30.40) via UDPv4
      2014-10-23 11:20:53 EVENT: CONNECTING
      2014-10-23 11:20:53 Tunnel Options:V4,dev-type tun,link-mtu 1557,tun-mtu 1500,proto UDPv4,keydir 1,cipher AES-128-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-client
      2014-10-23 11:20:53 Creds: Username/Password
      2014-10-23 11:20:53 Peer Info:
      IV_GUI_VER=net.openvpn.connect.ios 1.0.5-177
      IV_VER=3.0
      IV_PLAT=ios
      IV_NCP=1
      
      2014-10-23 11:20:54 VERIFY OK: depth=1
      cert. version    : 3
      serial number    : 00
      issuer name      : C=US, ST=Ohio, L=Toledo, O=Home, emailAddress=noone@nowhere.com, CN=home-ca
      subject name      : C=US, ST=Ohio, L=Toledo, O=Home, emailAddress=noone@nowhere.com, CN=home-ca
      issued  on        : 2014-10-23 14:40:57
      expires on        : 2024-10-20 14:40:57
      signed using      : RSA with SHA1
      RSA key size      : 2048 bits
      basic constraints : CA=true
      
      2014-10-23 11:20:54 VERIFY OK: depth=0
      cert. version    : 3
      serial number    : 01
      issuer name      : C=US, ST=Ohio, L=Toledo, O=Home, emailAddress=noone@nowhere.com, CN=home-ca
      subject name      : C=US, ST=Ohio, L=Toledo, O=Home, emailAddress=noone@nowhere.com, CN=openvpn
      issued  on        : 2014-10-23 14:42:27
      expires on        : 2024-10-20 14:42:27
      signed using      : RSA with SHA1
      RSA key size      : 2048 bits
      basic constraints : CA=false
      cert. type        : SSL Server
      key usage        : Digital Signature, Key Encipherment
      ext key usage    : TLS Web Server Authentication
      
      2014-10-23 11:21:14 EVENT: DISCONNECTED
      2014-10-23 11:21:14 Raw stats on disconnect:
        BYTES_IN : 4912
        BYTES_OUT : 16340
        PACKETS_IN : 37
        PACKETS_OUT : 47
      2014-10-23 11:21:14 Performance stats on disconnect:
        CPU usage (microseconds): 241340
        Network bytes per CPU second: 88058
        Tunnel bytes per CPU second: 0
      2014-10-23 11:21:14 ----- OpenVPN Stop -----
      
      
      1 Reply Last reply Reply Quote 0
      • valnarV
        valnar
        last edited by

        What does this mean?  I tried re-doing it again and it still comes up.

        basic constraints : CA=false

        1 Reply Last reply Reply Quote 0
        • valnarV
          valnar
          last edited by

          Nevermind.  Discovered it is borked on an iPhone 6.  I guess the app is not 64-bit aware.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.