OpenVpn TLS key negotiation

Konfiguracja serwerów, usług, itp.
staneks
Posty: 34
Rejestracja: 13 listopada 2015, 12:41

OpenVpn TLS key negotiation

Post autor: staneks » 27 marca 2017, 14:51

Mam Problem z OpenVpn. Ciągłe się rozłącza. Poniżej log klienta:

Kod: Zaznacz cały

Mon Mar 27 11:00:39 2017 OpenVPN 2.4.0 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Jan 31 2017
Mon Mar 27 11:00:39 2017 Windows version 6.1 (Windows 7) 64bit
Mon Mar 27 11:00:39 2017 library versions: OpenSSL 1.0.2k  26 Jan 2017, LZO 2.09
Enter Management Password:
Mon Mar 27 11:00:45 2017 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Mon Mar 27 11:00:45 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:00:45 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 11:00:45 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:01:45 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 11:01:45 2017 TLS Error: TLS handshake failed
Mon Mar 27 11:01:45 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 11:01:50 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:01:50 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 11:01:50 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:02:50 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 11:02:50 2017 TLS Error: TLS handshake failed
Mon Mar 27 11:02:50 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 11:02:55 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:02:55 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 11:02:55 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:03:56 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 11:03:56 2017 TLS Error: TLS handshake failed
Mon Mar 27 11:03:56 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 11:04:01 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:04:01 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 11:04:01 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:05:01 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 11:05:01 2017 TLS Error: TLS handshake failed
Mon Mar 27 11:05:01 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 11:05:06 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:05:06 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 11:05:06 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:06:06 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 11:06:06 2017 TLS Error: TLS handshake failed
Mon Mar 27 11:06:06 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 11:06:16 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:06:16 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 11:06:16 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:07:16 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 11:07:16 2017 TLS Error: TLS handshake failed
Mon Mar 27 11:07:16 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 11:07:36 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:07:36 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 11:07:36 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:08:36 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 11:08:36 2017 TLS Error: TLS handshake failed
Mon Mar 27 11:08:36 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 11:09:16 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:09:16 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 11:09:16 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:10:16 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 11:10:16 2017 TLS Error: TLS handshake failed
Mon Mar 27 11:10:16 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 11:11:36 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:11:36 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 11:11:36 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:12:35 2017 TLS Error: local/remote TLS keys are out of sync: [AF_INET]109.206.223.77:1200 [0]
Mon Mar 27 11:12:36 2017 TLS Error: local/remote TLS keys are out of sync: [AF_INET]109.206.223.77:1200 [0]
Mon Mar 27 11:12:36 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 11:12:36 2017 TLS Error: TLS handshake failed
Mon Mar 27 11:12:36 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 11:15:16 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:15:16 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 11:15:16 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:15:16 2017 [openvpnserver] Peer Connection Initiated with [AF_INET]109.206.223.77:1200
Mon Mar 27 11:15:17 2017 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Mon Mar 27 11:15:17 2017 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Mon Mar 27 11:15:17 2017 WARNING: cipher with small block size in use, reducing reneg-bytes to 64MB to mitigate SWEET32 attacks.
Mon Mar 27 11:15:17 2017 open_tun
Mon Mar 27 11:15:17 2017 TAP-WIN32 device [Połączenie lokalne 2] opened: \\.\Global\{7834805A-B73B-4972-936A-90E18BC2C963}.tap
Mon Mar 27 11:15:17 2017 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.198.140.26/255.255.255.0 on interface {7834805A-B73B-4972-936A-90E18BC2C963} [DHCP-serv: 10.198.140.0, lease-time: 31536000]
Mon Mar 27 11:15:17 2017 Successful ARP Flush on interface [15] {7834805A-B73B-4972-936A-90E18BC2C963}
Mon Mar 27 11:15:17 2017 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Mon Mar 27 11:15:22 2017 Initialization Sequence Completed
Mon Mar 27 11:19:04 2017 [openvpnserver] Inactivity timeout (--ping-restart), restarting
Mon Mar 27 11:19:04 2017 SIGUSR1[soft,ping-restart] received, process restarting
Mon Mar 27 11:19:09 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:19:09 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 11:19:09 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:19:09 2017 [openvpnserver] Peer Connection Initiated with [AF_INET]109.206.223.77:1200
Mon Mar 27 11:19:10 2017 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Mon Mar 27 11:19:10 2017 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Mon Mar 27 11:19:10 2017 WARNING: cipher with small block size in use, reducing reneg-bytes to 64MB to mitigate SWEET32 attacks.
Mon Mar 27 11:19:10 2017 Preserving previous TUN/TAP instance: Połączenie lokalne 2
Mon Mar 27 11:19:10 2017 Initialization Sequence Completed
Mon Mar 27 11:21:44 2017 [openvpnserver] Inactivity timeout (--ping-restart), restarting
Mon Mar 27 11:21:44 2017 SIGUSR1[soft,ping-restart] received, process restarting
Mon Mar 27 11:21:49 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:21:49 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 11:21:49 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:21:49 2017 [openvpnserver] Peer Connection Initiated with [AF_INET]109.206.223.77:1200
Mon Mar 27 11:21:50 2017 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Mon Mar 27 11:21:50 2017 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Mon Mar 27 11:21:50 2017 WARNING: cipher with small block size in use, reducing reneg-bytes to 64MB to mitigate SWEET32 attacks.
Mon Mar 27 11:21:50 2017 Preserving previous TUN/TAP instance: Połączenie lokalne 2
Mon Mar 27 11:21:50 2017 Initialization Sequence Completed
Mon Mar 27 11:24:30 2017 [openvpnserver] Inactivity timeout (--ping-restart), restarting
Mon Mar 27 11:24:30 2017 SIGUSR1[soft,ping-restart] received, process restarting
Mon Mar 27 11:24:35 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:24:35 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 11:24:35 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 11:24:35 2017 [openvpnserver] Peer Connection Initiated with [AF_INET]109.206.223.77:1200
Mon Mar 27 11:24:36 2017 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Mon Mar 27 11:24:36 2017 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Mon Mar 27 11:24:36 2017 WARNING: cipher with small block size in use, reducing reneg-bytes to 64MB to mitigate SWEET32 attacks.
Mon Mar 27 11:24:36 2017 Preserving previous TUN/TAP instance: Połączenie lokalne 2
Mon Mar 27 11:24:36 2017 Initialization Sequence Completed
Mon Mar 27 12:24:37 2017 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Mon Mar 27 12:24:37 2017 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Mon Mar 27 12:29:54 2017 read UDP: Connection reset by peer (WSAECONNRESET) (code=10054)
Mon Mar 27 12:30:03 2017 read UDP: Connection reset by peer (WSAECONNRESET) (code=10054)
Mon Mar 27 12:31:14 2017 [openvpnserver] Inactivity timeout (--ping-restart), restarting
Mon Mar 27 12:31:14 2017 SIGUSR1[soft,ping-restart] received, process restarting
Mon Mar 27 12:31:19 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 12:31:19 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 12:31:19 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 12:32:19 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 12:32:19 2017 TLS Error: TLS handshake failed
Mon Mar 27 12:32:19 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 12:32:24 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 12:32:24 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 12:32:24 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 12:33:10 2017 TLS Error: local/remote TLS keys are out of sync: [AF_INET]109.206.223.77:1200 [1]
Mon Mar 27 12:33:11 2017 TLS Error: local/remote TLS keys are out of sync: [AF_INET]109.206.223.77:1200 [1]
Mon Mar 27 12:33:13 2017 TLS Error: local/remote TLS keys are out of sync: [AF_INET]109.206.223.77:1200 [1]
Mon Mar 27 12:33:14 2017 TLS Error: local/remote TLS keys are out of sync: [AF_INET]109.206.223.77:1200 [1]
Mon Mar 27 12:33:15 2017 TLS Error: local/remote TLS keys are out of sync: [AF_INET]109.206.223.77:1200 [1]
Mon Mar 27 12:33:18 2017 TLS Error: local/remote TLS keys are out of sync: [AF_INET]109.206.223.77:1200 [1]
Mon Mar 27 12:33:19 2017 TLS Error: local/remote TLS keys are out of sync: [AF_INET]109.206.223.77:1200 [1]
Mon Mar 27 12:33:20 2017 TLS Error: local/remote TLS keys are out of sync: [AF_INET]109.206.223.77:1200 [1]
Mon Mar 27 12:33:23 2017 TLS Error: local/remote TLS keys are out of sync: [AF_INET]109.206.223.77:1200 [1]
Mon Mar 27 12:33:24 2017 TLS Error: local/remote TLS keys are out of sync: [AF_INET]109.206.223.77:1200 [1]
Mon Mar 27 12:33:24 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 12:33:24 2017 TLS Error: TLS handshake failed
Mon Mar 27 12:33:24 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 12:33:29 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 12:33:29 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 12:33:29 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 12:33:29 2017 [openvpnserver] Peer Connection Initiated with [AF_INET]109.206.223.77:1200
Mon Mar 27 12:33:30 2017 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Mon Mar 27 12:33:30 2017 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Mon Mar 27 12:33:30 2017 WARNING: cipher with small block size in use, reducing reneg-bytes to 64MB to mitigate SWEET32 attacks.
Mon Mar 27 12:33:30 2017 Preserving previous TUN/TAP instance: Połączenie lokalne 2
Mon Mar 27 12:33:30 2017 Initialization Sequence Completed
Mon Mar 27 12:34:28 2017 read UDP: Connection reset by peer (WSAECONNRESET) (code=10054)
Mon Mar 27 12:34:38 2017 read UDP: Connection reset by peer (WSAECONNRESET) (code=10054)
Mon Mar 27 13:19:26 2017 [openvpnserver] Inactivity timeout (--ping-restart), restarting
Mon Mar 27 13:19:26 2017 SIGUSR1[soft,ping-restart] received, process restarting
Mon Mar 27 13:19:31 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:19:31 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 13:19:31 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:20:31 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 13:20:31 2017 TLS Error: TLS handshake failed
Mon Mar 27 13:20:31 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 13:20:36 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:20:36 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 13:20:36 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:21:36 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 13:21:36 2017 TLS Error: TLS handshake failed
Mon Mar 27 13:21:36 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 13:21:41 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:21:41 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 13:21:41 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:22:42 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 13:22:42 2017 TLS Error: TLS handshake failed
Mon Mar 27 13:22:42 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 13:22:47 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:22:47 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 13:22:47 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:23:47 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 13:23:47 2017 TLS Error: TLS handshake failed
Mon Mar 27 13:23:47 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 13:23:52 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:23:52 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 13:23:52 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:24:52 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 13:24:52 2017 TLS Error: TLS handshake failed
Mon Mar 27 13:24:52 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 13:24:57 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:24:57 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 13:24:57 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:25:57 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 13:25:57 2017 TLS Error: TLS handshake failed
Mon Mar 27 13:25:57 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 13:26:07 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:26:07 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 13:26:07 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:27:07 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 13:27:07 2017 TLS Error: TLS handshake failed
Mon Mar 27 13:27:07 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 13:27:27 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:27:27 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 13:27:27 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:28:27 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 13:28:27 2017 TLS Error: TLS handshake failed
Mon Mar 27 13:28:27 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 13:29:07 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:29:07 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 13:29:07 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:30:07 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 13:30:07 2017 TLS Error: TLS handshake failed
Mon Mar 27 13:30:07 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 13:31:27 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:31:27 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 13:31:27 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:32:27 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 13:32:27 2017 TLS Error: TLS handshake failed
Mon Mar 27 13:32:27 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 13:35:07 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:35:07 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 13:35:07 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:36:08 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 13:36:08 2017 TLS Error: TLS handshake failed
Mon Mar 27 13:36:08 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 13:41:08 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:41:08 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 13:41:08 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:42:08 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 13:42:08 2017 TLS Error: TLS handshake failed
Mon Mar 27 13:42:08 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 13:47:08 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:47:08 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 13:47:08 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:48:08 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Mar 27 13:48:08 2017 TLS Error: TLS handshake failed
Mon Mar 27 13:48:08 2017 SIGUSR1[soft,tls-error] received, process restarting
Mon Mar 27 13:53:08 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:53:08 2017 UDP link local (bound): [AF_INET][undef]:1200
Mon Mar 27 13:53:08 2017 UDP link remote: [AF_INET]109.206.223.77:1200
Mon Mar 27 13:53:08 2017 [openvpnserver] Peer Connection Initiated with [AF_INET]109.206.223.77:1200
Mon Mar 27 13:53:09 2017 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Mon Mar 27 13:53:09 2017 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Mon Mar 27 13:53:09 2017 WARNING: cipher with small block size in use, reducing reneg-bytes to 64MB to mitigate SWEET32 attacks.
Mon Mar 27 13:53:09 2017 Preserving previous TUN/TAP instance: Połączenie lokalne 2
Mon Mar 27 13:53:09 2017 Initialization Sequence Completed 
PROSZĘ POMÓŻCIE NIE WIEM W CZYM PROBLEM

Moderowano: Uzupełniono znaczniki kodu. Proszę stosować się do regulaminu forum oraz nie używać bez potrzeby wielkich liter.

Awatar użytkownika
pawkrol
Moderator
Posty: 930
Rejestracja: 03 kwietnia 2011, 10:25

Re: OpenVpn TLS key negotiation

Post autor: pawkrol » 28 marca 2017, 12:20

No masz błąd negocjacji kluczy. Czemu ?? Nie wiem. bo nic nie podałeś.
Konfiguracja serwera,klienta, ich wersje. Jak generujesz certyfikaty, czy wprowadzasz jakąś dodatkową walidację za pomocą skryptów. Jak wygląda log po stronie serwera.

ODPOWIEDZ