Hi.
Am 14.03.19 um 14:00 schrieb Gert Doering:
I'd just circumvent this - if this is only for a migrational period,
generate a private key without passphrase, done.
Thanks for your input, I did what your recommended. It seems like now I
am a step further, but have an issue, still:
Thu Mar 14 14:46:48 2019 OpenVPN 2.1_rc20 x86_64-suse-linux [SSL] [LZO2]
[EPOLL] [PKCS11] built on Dec 17 2009
Thu Mar 14 14:46:48 2019 NOTE: the current --script-security setting may
allow this configuration to call user-defined scripts
Thu Mar 14 14:46:48 2019 Control Channel Authentication: using
'./etc/openvpn/server/ta.key' as a OpenVPN static key file
Thu Mar 14 14:46:48 2019 Outgoing Control Channel Authentication: Using
256 bit message hash 'SHA256' for HMAC authentication
Thu Mar 14 14:46:48 2019 Incoming Control Channel Authentication: Using
256 bit message hash 'SHA256' for HMAC authentication
Thu Mar 14 14:46:48 2019 Control Channel MTU parms [ L:1601 D:178 EF:78
EB:0 ET:0 EL:0 ]
Thu Mar 14 14:46:48 2019 Data Channel MTU parms [ L:1601 D:1450 EF:69
EB:4 ET:32 EL:0 ]
Thu Mar 14 14:46:48 2019 Local Options hash (VER=V4): 'd609428d'
Thu Mar 14 14:46:48 2019 Expected Remote Options hash (VER=V4): 'df325eff'
Thu Mar 14 14:46:48 2019 Socket Buffers: R=[129024->131072]
S=[129024->131072]
Thu Mar 14 14:46:48 2019 UDPv4 link local: [undef]
Thu Mar 14 14:46:48 2019 UDPv4 link remote: xxx.xxx.xxx.xxx:1194
Thu Mar 14 14:47:48 2019 TLS Error: TLS key negotiation failed to occur
within 60 seconds (check your network connectivity)
Thu Mar 14 14:47:48 2019 TLS Error: TLS handshake failed
Thu Mar 14 14:47:48 2019 TCP/UDP: Closing socket
Any ideas on this one?
Thanks,
Steffi
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users