ExpressVPN Help



  • I've been searching around online for quite some time now, and have had no luck at all. ExpressVPN is unable to help guide me either, so I'm curious if someone here can help. I've set up all my certs and stuff like that in pfSense. I'm wondering if I'm screwing up the option portion, or what is going on. Here on my options:

    fast-io; persist-key;replay-persist cur-replay-protection.cache; remote-random; pull; verb 5; key-direction 1;route-method exe; route-delay 2;tun-mtu 1500;fragment 1300;mssfix 1450;
    persist-tun;keepalive 10 120;

    Here is my log:

    Mar 14 18:52:22 openvpn[76503]: Re-using SSL/TLS context
    Mar 14 18:52:22 openvpn[76503]: LZO compression initialized
    Mar 14 18:52:22 openvpn[76503]: Control Channel MTU parms [ L:1546 D:166 EF:66 EB:0 ET:0 EL:3 ]
    Mar 14 18:52:22 openvpn[76503]: Socket Buffers: R=[42080->65536] S=[57344->65536]
    Mar 14 18:52:22 openvpn[76503]: Data Channel MTU parms [ L:1546 D:1450 EF:46 EB:143 ET:0 EL:3 AF:3/1 ]
    Mar 14 18:52:22 openvpn[76503]: Fragmentation MTU parms [ L:1546 D:1300 EF:45 EB:143 ET:1 EL:3 AF:3/1 ]
    Mar 14 18:52:22 openvpn[76503]: Local Options String: 'V4,dev-type tun,link-mtu 1546,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,keydir 1,cipher BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-client'
    Mar 14 18:52:22 openvpn[76503]: Expected Remote Options String: 'V4,dev-type tun,link-mtu 1546,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,keydir 0,cipher BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-server'
    Mar 14 18:52:22 openvpn[76503]: Local Options hash (VER=V4): '551868c6'
    Mar 14 18:52:22 openvpn[76503]: Expected Remote Options hash (VER=V4): 'e34c1722'
    Mar 14 18:52:22 openvpn[76503]: UDPv4 link local (bound): [AF_INET]73.164.238.7
    Mar 14 18:52:22 openvpn[76503]: UDPv4 link remote: [AF_INET]167.160.116.49:1195
    Mar 14 18:53:22 openvpn[76503]: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
    Mar 14 18:53:22 openvpn[76503]: TLS Error: TLS handshake failed
    Mar 14 18:53:22 openvpn[76503]: TCP/UDP: Closing socket
    Mar 14 18:53:22 openvpn[76503]: SIGUSR1[soft,tls-error] received, process restarting
    Mar 14 18:53:22 openvpn[76503]: Restart pause, 2 second(s)
    Mar 14 18:53:24 openvpn[76503]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
    Mar 14 18:53:24 openvpn[76503]: NOTE: the current –script-security setting may allow this configuration to call user-defined scripts
    Mar 14 18:53:24 openvpn[76503]: Re-using SSL/TLS context
    Mar 14 18:53:24 openvpn[76503]: LZO compression initialized
    Mar 14 18:53:24 openvpn[76503]: Control Channel MTU parms [ L:1546 D:166 EF:66 EB:0 ET:0 EL:3 ]
    Mar 14 18:53:24 openvpn[76503]: Socket Buffers: R=[42080->65536] S=[57344->65536]
    Mar 14 18:53:24 openvpn[76503]: Data Channel MTU parms [ L:1546 D:1450 EF:46 EB:143 ET:0 EL:3 AF:3/1 ]
    Mar 14 18:53:24 openvpn[76503]: Fragmentation MTU parms [ L:1546 D:1300 EF:45 EB:143 ET:1 EL:3 AF:3/1 ]
    Mar 14 18:53:24 openvpn[76503]: Local Options String: 'V4,dev-type tun,link-mtu 1546,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,keydir 1,cipher BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-client'
    Mar 14 18:53:24 openvpn[76503]: Expected Remote Options String: 'V4,dev-type tun,link-mtu 1546,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,keydir 0,cipher BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-server'
    Mar 14 18:53:24 openvpn[76503]: Local Options hash (VER=V4): '551868c6'
    Mar 14 18:53:24 openvpn[76503]: Expected Remote Options hash (VER=V4): 'e34c1722'
    Mar 14 18:53:24 openvpn[76503]: UDPv4 link local (bound): [AF_INET]73.164.238.7
    Mar 14 18:53:24 openvpn[76503]: UDPv4 link remote: [AF_INET]167.160.116.49:1195
    Mar 14 18:54:24 openvpn[76503]: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
    Mar 14 18:54:24 openvpn[76503]: TLS Error: TLS handshake failed
    Mar 14 18:54:24 openvpn[76503]: TCP/UDP: Closing socket
    Mar 14 18:54:24 openvpn[76503]: SIGUSR1[soft,tls-error] received, process restarting
    Mar 14 18:54:24 openvpn[76503]: Restart pause, 2 second(s)
    Mar 14 18:54:26 openvpn[76503]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
    Mar 14 18:54:26 openvpn[76503]: NOTE: the current –script-security setting may allow this configuration to call user-defined scripts
    Mar 14 18:54:26 openvpn[76503]: Re-using SSL/TLS context
    Mar 14 18:54:26 openvpn[76503]: LZO compression initialized
    Mar 14 18:54:26 openvpn[76503]: Control Channel MTU parms [ L:1546 D:166 EF:66 EB:0 ET:0 EL:3 ]
    Mar 14 18:54:26 openvpn[76503]: Socket Buffers: R=[42080->65536] S=[57344->65536]
    Mar 14 18:54:26 openvpn[76503]: Data Channel MTU parms [ L:1546 D:1450 EF:46 EB:143 ET:0 EL:3 AF:3/1 ]
    Mar 14 18:54:26 openvpn[76503]: Fragmentation MTU parms [ L:1546 D:1300 EF:45 EB:143 ET:1 EL:3 AF:3/1 ]
    Mar 14 18:54:26 openvpn[76503]: Local Options String: 'V4,dev-type tun,link-mtu 1546,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,keydir 1,cipher BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-client'
    Mar 14 18:54:26 openvpn[76503]: Expected Remote Options String: 'V4,dev-type tun,link-mtu 1546,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,keydir 0,cipher BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-server'
    Mar 14 18:54:26 openvpn[76503]: Local Options hash (VER=V4): '551868c6'
    Mar 14 18:54:26 openvpn[76503]: Expected Remote Options hash (VER=V4): 'e34c1722'
    Mar 14 18:54:26 openvpn[76503]: UDPv4 link local (bound): [AF_INET]73.164.238.7
    Mar 14 18:54:26 openvpn[76503]: UDPv4 link remote: [AF_INET]167.160.116.49:1195

    Please help, I've seriously been stuck here for weeks working and coming back and failing.



  • Another user posted a solution a few weeks ago.

    https://forum.pfsense.org/index.php?topic=107415.0

    Hope that helps!


Log in to reply