Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    TLS Encryption and Authentication not working. Authentication only, working fine

    Scheduled Pinned Locked Moved OpenVPN
    27 Posts 4 Posters 2.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      maartenv @johnpoz
      last edited by

      @johnpoz This is normally working. The problem is that when I set TLS Authentication to TLS Encryption and Authentication I don't get a connection anymore.

      johnpozJ 1 Reply Last reply Reply Quote 0
      • johnpozJ
        johnpoz LAYER 8 Global Moderator @maartenv
        last edited by

        Your not using TLS.. so how would it encrypt.. You just have user auth set, not remote (ssl/tls)

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.11 | Lab VMs 2.8, 24.11

        M 2 Replies Last reply Reply Quote 0
        • M
          maartenv @johnpoz
          last edited by

          @johnpoz You are right. Let me check again. I did that as well and also did not work, but I changed several other settings at the same time (stupid) and I had set it back to just the auth setting and now I forgot to enable SSL/TLS again.

          1 Reply Last reply Reply Quote 0
          • M
            maartenv @johnpoz
            last edited by

            @johnpoz Now I remember: In that case I could not create a new cert. Instead I got the message "If a client is missing from the list it is likely due to a CA mismatch between the OpnVPN server instance and the client certificate"

            JohnPoz, I appreciate your help quite a lot, but here (Amsterdam) it is 1.30 am and I have to get up early tomorrow morning.

            Tomorrow I will focus on that. Hope I can solve it then.

            johnpozJ M 2 Replies Last reply Reply Quote 0
            • johnpozJ
              johnpoz LAYER 8 Global Moderator @maartenv
              last edited by

              The wizard walks you through creating a CA and server cert.

              Then just create a user cert from that CA.

              An intelligent man is sometimes forced to be drunk to spend time with his fools
              If you get confused: Listen to the Music Play
              Please don't Chat/PM me for help, unless mod related
              SG-4860 24.11 | Lab VMs 2.8, 24.11

              M 1 Reply Last reply Reply Quote 1
              • M
                maartenv @johnpoz
                last edited by

                @johnpoz I have been focusing on the wrong subject all the time. At a certain point you get too tired trying to solve a problem that you lose oversight. I had several certs for testing and probably used the wrong one. I will change that tomorrow and I am convinced that that probably is the problem.

                Thanks a lot with your help and I will let you know if this indeed was the problem.

                Have a nice day.

                GertjanG 1 Reply Last reply Reply Quote 0
                • GertjanG
                  Gertjan @maartenv
                  last edited by

                  @maartenv : before redo your VPN setup : take the Youtube -> Netgate -> OpenVPN videos.
                  Zeker weten dat je al je vragen beantwoordt krijgt ;)

                  No "help me" PM's please. Use the forum, the community will thank you.
                  Edit : and where are the logs ??

                  M 1 Reply Last reply Reply Quote 1
                  • M
                    maartenv @Gertjan
                    last edited by

                    @gertjan Dank je voor de tip, probleem is inmiddels opgelost

                    1 Reply Last reply Reply Quote 0
                    • M
                      maartenv @maartenv
                      last edited by

                      @maartenv Thanks for your help. Problem is solved now.

                      PippinP 1 Reply Last reply Reply Quote 0
                      • PippinP
                        Pippin @maartenv
                        last edited by

                        En de winnaar was.....

                        I gloomily came to the ironic conclusion that if you take a highly intelligent person and give them the best possible, elite education, then you will most likely wind up with an academic who is completely impervious to reality.
                        Halton Arp

                        M 1 Reply Last reply Reply Quote 0
                        • M
                          maartenv @Pippin
                          last edited by

                          @pippin After I had changed the Local Port Number in a new Wizard run, the new port number was added to the WAN firewall rules.
                          When I was cleaning that up, by accident I removed the wrong port number.
                          And then you can do whatever you want, but you will never get it working 😢

                          1 Reply Last reply Reply Quote 0
                          • First post
                            Last post
                          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.