• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

TTL error when trying to openvpn server behind Cisco Router

Scheduled Pinned Locked Moved OpenVPN
4 Posts 2 Posters 1.2k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • V
    velbon
    last edited by Dec 21, 2014, 1:43 PM

    Dear All,
    This is my situation:
    41.208.54.46<cisco router="">172.24.0.1–----172.24.0.50<pfsense>192.168.1.0--192.168.1.230 <server>This is my network and i am trying to access it using openvpn client but it is giving me this error shown below:
    Sun Dec 21 13:28:48 2014 UDPv4 link local (bound): [undef]
    Sun Dec 21 13:28:48 2014 UDPv4 link remote: [AF_INET]41.208.54.46:1194
    Sun Dec 21 13:29:48 2014 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
    Sun Dec 21 13:29:48 2014 TLS Error: TLS handshake failed
    Sun Dec 21 13:29:48 2014 SIGUSR1[soft,tls-error] received, process restarting
    Sun Dec 21 13:29:51 2014 UDPv4 link local (bound): [undef]
    Sun Dec 21 13:29:51 2014 UDPv4 link remote: [AF_INET]41.208.54.46:1194
    Sun Dec 21 13:30:51 2014 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
    Sun Dec 21 13:30:51 2014 TLS Error: TLS handshake failed
    Sun Dec 21 13:30:51 2014 SIGUSR1[soft,tls-error] received, process restarting
    Sun Dec 21 13:30:54 2014 UDPv4 link local (bound): [undef]
    Sun Dec 21 13:30:54 2014 UDPv4 link remote: [AF_INET]41.208.54.46:1194
    Sun Dec 21 13:31:55 2014 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
    Sun Dec 21 13:31:55 2014 TLS Error: TLS handshake failed
    Sun Dec 21 13:31:55 2014 SIGUSR1[soft,tls-error] received, process restarting
    Sun Dec 21 13:31:58 2014 UDPv4 link local (bound): [undef]
    Sun Dec 21 13:31:58 2014 UDPv4 link remote: [AF_INET]41.208.54.46:1194

    Please can someone help with the procedure to solve this issue</server></pfsense></cisco>

    1 Reply Last reply Reply Quote 0
    • V
      velbon
      last edited by Dec 21, 2014, 3:24 PM

      I had finally solved the issue. There was a need for port forwarding in the cisco router and please don't forget the openvpn is using udp and not tcp.
      Example
      router#configure terminal
      router(config)#ip nat inside source static udp <inside ip="" address="">1194 interface <outside interface="">1194.

      It is now connected but i don't know why i am receiving these information on my logs:

      Sun Dec 21 15:07:21 2014 [www.health.gov.sl] Peer Connection Initiated with [AF_INET]41.78.86.43:1194
      Sun Dec 21 15:07:25 2014 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
      Sun Dec 21 15:07:25 2014 open_tun, tt->ipv6=0
      Sun Dec 21 15:07:25 2014 TAP-WIN32 device [Local Area Connection 3] opened: \.\Global{DDC1558A-72E9-4791-A8EE-F5D56AEFD254}.tap
      Sun Dec 21 15:07:25 2014 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.1.8.6/255.255.255.252 on interface {DDC1558A-72E9-4791-A8EE-F5D56AEFD254} [DHCP-serv: 10.1.8.5, lease-time: 31536000]
      Sun Dec 21 15:07:30 2014 ROUTE: route addition failed using CreateIpForwardEntry: Access is denied.  [status=5 if_index=29]
      Sun Dec 21 15:07:30 2014 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
      Sun Dec 21 15:07:33 2014 ERROR: Windows route add command failed [adaptive]: returned error code 1
      Sun Dec 21 15:07:33 2014 ROUTE: route addition failed using CreateIpForwardEntry: Access is denied.  [status=5 if_index=33]
      Sun Dec 21 15:07:33 2014 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
      Sun Dec 21 15:07:34 2014 ERROR: Windows route add command failed [adaptive]: returned error code 1
      Sun Dec 21 15:07:34 2014 ROUTE: route addition failed using CreateIpForwardEntry: Access is denied.  [status=5 if_index=33]
      Sun Dec 21 15:07:34 2014 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
      Sun Dec 21 15:07:34 2014 ERROR: Windows route add command failed [adaptive]: returned error code 1
      Sun Dec 21 15:07:34 2014 ROUTE: route addition failed using CreateIpForwardEntry: Access is denied.  [status=5 if_index=33]
      Sun Dec 21 15:07:34 2014 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
      Sun Dec 21 15:07:34 2014 ERROR: Windows route add command failed [adaptive]: returned error code 1
      Sun Dec 21 15:07:34 2014 ROUTE: route addition failed using CreateIpForwardEntry: Access is denied.  [status=5 if_index=33]
      Sun Dec 21 15:07:34 2014 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
      Sun Dec 21 15:07:36 2014 ERROR: Windows route add command failed [adaptive]: returned error code 1
      Sun Dec 21 15:07:36 2014 Initialization Sequence Completed</outside></inside>

      1 Reply Last reply Reply Quote 0
      • V
        velbon
        last edited by Dec 21, 2014, 5:36 PM

        Dear All,
        I had finally solved the issue with the error. All I did was to start openvpn client as an administrator.

        But i have another isssue:
        I can't ping all the devices in my LAN even when i can see that they alive from monitoring tool

        1 Reply Last reply Reply Quote 0
        • H
          heper
          last edited by Dec 21, 2014, 6:05 PM

          firewalls on the lan-devices or gateway not correct on lan-devices?

          1 Reply Last reply Reply Quote 0
          4 out of 4
          • First post
            4/4
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
            This community forum collects and processes your personal information.
            consent.not_received