Error TLS handshake failed

mmauriello

Good morning,
we have a strange behavior in the OpenVPN connection.
We have two computer configured in the same way (virtual machine cloned from the same master), with the same profile of connection and two different user (configured in the same way) that need to connect to a remote site.
One of the two machine have no problem at all, the other one have some problem with timeout inactivity (the two user have the same use of connection) and a lot of problem with reconnection when he as shut down ( TLS handshake failed ).

On the PC with the problem the user can have the disconnections randomly 3 time in a morning or have no issue for 2 days without change in the server side and in the client configuration.

Here we have the log client side
Fri Jun 01 08:35:21 2018 OpenVPN 2.4.4 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Sep 26 2017
Fri Jun 01 08:35:21 2018 Windows version 6.1 (Windows 7) 64bit
Fri Jun 01 08:35:21 2018 library versions: OpenSSL 1.0.2l 25 May 2017, LZO 2.10
Fri Jun 01 08:35:23 2018 TCP/UDP: Preserving recently used remote address: [AF_INET]93.56.8.162:1197
Fri Jun 01 08:35:23 2018 UDP link local (bound): [AF_INET][undef]:1194
Fri Jun 01 08:35:23 2018 UDP link remote: [AF_INET]93.56.8.162:1197
Fri Jun 01 08:36:23 2018 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Jun 01 08:36:23 2018 TLS Error: TLS handshake failed
Fri Jun 01 08:36:23 2018 SIGUSR1[soft,tls-error] received, process restarting
Fri Jun 01 08:36:28 2018 TCP/UDP: Preserving recently used remote address: [AF_INET]93.56.8.162:1197
Fri Jun 01 08:36:28 2018 UDP link local (bound): [AF_INET][undef]:1194
Fri Jun 01 08:36:28 2018 UDP link remote: [AF_INET]93.56.8.162:1197

Here we have the log server side
Jun 1 09:12:49 Comcor-fw1 openvpn[19117]: Authenticate/Decrypt packet error: packet HMAC authentication failed
Jun 1 09:12:49 Comcor-fw1 openvpn[19117]: TLS Error: incoming packet authentication failed from [AF_INET]85.42.57.216:41296
Jun 1 09:13:05 Comcor-fw1 openvpn[19117]: Authenticate/Decrypt packet error: packet HMAC authentication failed
Jun 1 09:13:05 Comcor-fw1 openvpn[19117]: TLS Error: incoming packet authentication failed from [AF_INET]85.42.57.216:41296
Jun 1 09:13:44 Comcor-fw1 openvpn[19117]: Authenticate/Decrypt packet error: packet HMAC authentication failed
Jun 1 09:13:44 Comcor-fw1 openvpn[19117]: TLS Error: incoming packet authentication failed from [AF_INET]85.42.57.216:41296
Jun 1 09:13:47 Comcor-fw1 openvpn[19117]: Authenticate/Decrypt packet error: packet HMAC authentication failed
Jun 1 09:13:47 Comcor-fw1 openvpn[19117]: TLS Error: incoming packet authentication failed from [AF_INET]85.42.57.216:41296
Jun 1 09:13:52 Comcor-fw1 openvpn[19117]: Authenticate/Decrypt packet error: packet HMAC authentication failed
Jun 1 09:13:52 Comcor-fw1 openvpn[19117]: TLS Error: incoming packet authentication failed from [AF_INET]85.42.57.216:41296
Jun 1 09:14:00 Comcor-fw1 openvpn[19117]: Authenticate/Decrypt packet error: packet HMAC authentication failed
Jun 1 09:14:00 Comcor-fw1 openvpn[19117]: TLS Error: incoming packet authentication failed from [AF_INET]85.42.57.216:41296
Jun 1 09:14:16 Comcor-fw1 openvpn[19117]: Authenticate/Decrypt packet error: packet HMAC authentication failed
Jun 1 09:14:16 Comcor-fw1 openvpn[19117]: TLS Error: incoming packet authentication failed from [AF_INET]85.42.57.216:41296
Jun 1 09:15:04 Comcor-fw1 openvpn[19117]: Authenticate/Decrypt packet error: packet HMAC authentication failed
Jun 1 09:15:04 Comcor-fw1 openvpn[19117]: TLS Error: incoming packet authentication failed from [AF_INET]85.42.57.216:41296
Jun 1 09:15:07 Comcor-fw1 openvpn[19117]: Authenticate/Decrypt packet error: packet HMAC authentication failed
Jun 1 09:15:07 Comcor-fw1 openvpn[19117]: TLS Error: incoming packet authentication failed from [AF_INET]85.42.57.216:41296
Jun 1 09:15:12 Comcor-fw1 openvpn[19117]: Authenticate/Decrypt packet error: packet HMAC authentication failed
Jun 1 09:15:12 Comcor-fw1 openvpn[19117]: TLS Error: incoming packet authentication failed from [AF_INET]85.42.57.216:41296
Jun 1 09:15:20 Comcor-fw1 openvpn[19117]: Authenticate/Decrypt packet error: packet HMAC authentication failed
Jun 1 09:15:20 Comcor-fw1 openvpn[19117]: TLS Error: incoming packet authentication failed from [AF_INET]85.42.57.216:41296
Jun 1 09:15:37 Comcor-fw1 openvpn[19117]: Authenticate/Decrypt packet error: packet HMAC authentication failed
Jun 1 09:15:37 Comcor-fw1 openvpn[19117]: TLS Error: incoming packet authentication failed from [AF_INET]85.42.57.216:41296
Jun 1 09:16:44 Comcor-fw1 openvpn[19117]: Authenticate/Decrypt packet error: packet HMAC authentication failed
Jun 1 09:16:44 Comcor-fw1 openvpn[19117]: TLS Error: incoming packet authentication failed from [AF_INET]85.42.57.216:1194
Jun 1 09:16:46 Comcor-fw1 openvpn[19117]: Authenticate/Decrypt packet error: packet HMAC authentication failed
Jun 1 09:16:46 Comcor-fw1 openvpn[19117]: TLS Error: incoming packet authentication failed from [AF_INET]85.42.57.216:1194
Jun 1 09:16:50 Comcor-fw1 openvpn[19117]: Authenticate/Decrypt packet error: packet HMAC authentication failed
Jun 1 09:16:50 Comcor-fw1 openvpn[19117]: TLS Error: incoming packet authentication failed from [AF_INET]85.42.57.216:1194
Jun 1 09:16:58 Comcor-fw1 openvpn[19117]: Authenticate/Decrypt packet error: packet HMAC authentication failed
Jun 1 09:16:58 Comcor-fw1 openvpn[19117]: TLS Error: incoming packet authentication failed from [AF_INET]85.42.57.216:1194
Jun 1 09:17:14 Comcor-fw1 openvpn[19117]: Authenticate/Decrypt packet error: packet HMAC authentication failed
Jun 1 09:17:14 Comcor-fw1 openvpn[19117]: TLS Error: incoming packet authentication failed from [AF_INET]85.42.57.216:1194
Jun 1 09:19:53 Comcor-fw1 openvpn[19117]: 85.42.57.216:1194 peer info: IV_VER=2.4.1
Jun 1 09:19:53 Comcor-fw1 openvpn[19117]: 85.42.57.216:1194 peer info: IV_PLAT=win
Jun 1 09:19:53 Comcor-fw1 openvpn[19117]: 85.42.57.216:1194 peer info: IV_PROTO=2
Jun 1 09:19:53 Comcor-fw1 openvpn[19117]: 85.42.57.216:1194 peer info: IV_NCP=2
Jun 1 09:19:53 Comcor-fw1 openvpn[19117]: 85.42.57.216:1194 peer info: IV_LZ4=1
Jun 1 09:19:53 Comcor-fw1 openvpn[19117]: 85.42.57.216:1194 peer info: IV_LZ4v2=1
Jun 1 09:19:53 Comcor-fw1 openvpn[19117]: 85.42.57.216:1194 peer info: IV_LZO=1
Jun 1 09:19:53 Comcor-fw1 openvpn[19117]: 85.42.57.216:1194 peer info: IV_COMP_STUB=1
Jun 1 09:19:53 Comcor-fw1 openvpn[19117]: 85.42.57.216:1194 peer info: IV_COMP_STUBv2=1
Jun 1 09:19:53 Comcor-fw1 openvpn[19117]: 85.42.57.216:1194 peer info: IV_TCPNL=1
Jun 1 09:19:53 Comcor-fw1 openvpn[19117]: 85.42.57.216:1194 peer info: IV_GUI_VER=OpenVPN_GUI_11
Jun 1 09:19:53 Comcor-fw1 openvpn: user 'vpn1' authenticated
Jun 1 09:19:54 Comcor-fw1 openvpn[19117]: 85.42.57.216:1194 [vpn1] Peer Connection Initiated with [AF_INET]85.42.57.216:1194
Jun 1 09:19:54 Comcor-fw1 openvpn[19117]: vpn1/85.42.57.216:1194 MULTI_sva: pool returned IPv4=172.18.33.2, IPv6=(Not enabled)
Jun 1 09:36:11 Comcor-fw1 openvpn[19117]: 85.42.57.216:42410 peer info: IV_VER=2.4.4
Jun 1 09:36:11 Comcor-fw1 openvpn[19117]: 85.42.57.216:42410 peer info: IV_PLAT=win
Jun 1 09:36:11 Comcor-fw1 openvpn[19117]: 85.42.57.216:42410 peer info: IV_PROTO=2
Jun 1 09:36:11 Comcor-fw1 openvpn[19117]: 85.42.57.216:42410 peer info: IV_NCP=2
Jun 1 09:36:11 Comcor-fw1 openvpn[19117]: 85.42.57.216:42410 peer info: IV_LZ4=1
Jun 1 09:36:11 Comcor-fw1 openvpn[19117]: 85.42.57.216:42410 peer info: IV_LZ4v2=1
Jun 1 09:36:11 Comcor-fw1 openvpn[19117]: 85.42.57.216:42410 peer info: IV_LZO=1
Jun 1 09:36:11 Comcor-fw1 openvpn[19117]: 85.42.57.216:42410 peer info: IV_COMP_STUB=1
Jun 1 09:36:11 Comcor-fw1 openvpn[19117]: 85.42.57.216:42410 peer info: IV_COMP_STUBv2=1
Jun 1 09:36:11 Comcor-fw1 openvpn[19117]: 85.42.57.216:42410 peer info: IV_TCPNL=1
Jun 1 09:36:11 Comcor-fw1 openvpn[19117]: 85.42.57.216:42410 peer info: IV_GUI_VER=OpenVPN_GUI_11
Jun 1 09:36:12 Comcor-fw1 openvpn: user 'vpn3' authenticated