Active Topics
-
List of well performing apps on Leste (35)
to Maemo 7 / Leste by smatkovi - 2 days, 3 hrs ago -
Porting apps to Leste (43)
to Maemo 7 / Leste by teroyk - 2 days, 9 hrs ago -
Sailfish OS for the Motorola Moto G7 Power (XT1955-5) - (ocean) (13)
to SailfishOS by edp17 - 3 days, 1 hr ago -
Sailfish OS for the Samsung Galaxy Note 4 (SM-N910C) - (treltexx) (79)
to SailfishOS by edp17 - 3 days, 1 hr ago -
U-Boot for Nokia RX-51 with BootMenu (updated version 2012.10-rc3-1) (843)
to Alternatives by Arno_11 - 3 days, 6 hrs ago -
Maemo repository (5)
to Community by dredlok706 - 6 days, 1 hr ago -
Re-commissioning N9 in 2018 (127)
to MeeGo / Harmattan by smatkovi - 6 days, 4 hrs ago - more...
 |
|
2009-07-09
, 16:17
|
|
Posts: 129 |
Thanked: 60 times |
Joined on Jul 2009
@ Castello d'Argile (BO)
|
#2
|
I had originally set up openvpn without tls-auth and it worked fine with the N810, a Kubuntu client and an XP one.
With the tls-auth option, the OpenWRT server is complaining that HMAC authorization has failed. Double and triple checked both client (tls-auth ta.key 1) and server (...0) but only getting rid of the option results in a functioning vpn connection.
Either the openvpn server for OpenWRT or the openvpn client for Maemo have some trouble dealing with HMAC, I'd suppose.
HTH,
Andrea.
With the tls-auth option, the OpenWRT server is complaining that HMAC authorization has failed. Double and triple checked both client (tls-auth ta.key 1) and server (...0) but only getting rid of the option results in a functioning vpn connection.
Either the openvpn server for OpenWRT or the openvpn client for Maemo have some trouble dealing with HMAC, I'd suppose.
HTH,
Andrea.
|
|
2009-07-10
, 10:16
|
|
Posts: 2 |
Thanked: 0 times |
Joined on Jul 2009
@ Central, NJ
|
#3
|
Thanks for the response, but by commenting out the TLS client and TLS auth lines I receive fatal TLS errors when the VPN server sends the first packet. In my configuration the VPN server requires TLS auth and the VPN client fails without it.
I will look at HMAC to see if there are any clues in there.... I appreciate the feedback.
I will look at HMAC to see if there are any clues in there.... I appreciate the feedback.
connect to my VPN service I get a SIGUSR1 reset and the connection socket gets dropped, and openvpn then tries
again....this goes on until finally openvpn gives up.
Any help would be so cool....thanks
The following is how my client.conf file is configured:
client
ns-cert-type server
tls-client
tls-auth /etc/openvpn/ta.key 1
remote xxx.xxx.xxx.xxx 1194
remote xxx.xxx.xxx.xxx 1195
proto tcp
dev tun
dev-type tap
pull
resolv-retry infinite
nobind
comp-lzo
cipher BF-CBC
ca /etc/openvpn/ca.crt
cert /etc/openvpn/my-nokia.crt
key /etc/openvpn/my-nokia.key
daemon
user user
group operator
resolv-retry infinite
persist-tun
persist-key
log /tmp/openvpn-client.log
management tunnel 11950 /etc/openvpn/myvpnaccesspt
verb 3
From the logs I can gleam:
Thu Jan 8 11:02:54 2009 Re-using SSL/TLS context
Thu Jan 8 11:02:54 2009 LZO compression initialized
Thu Jan 8 11:02:54 2009 Attempting to establish TCP connection with 167.206.184.61:1195
Thu Jan 8 11:02:55 2009 TCP connection established with 167.206.184.61:1195
Thu Jan 8 11:02:55 2009 TCPv4_CLIENT link local: [undef]
Thu Jan 8 11:02:55 2009 TCPv4_CLIENT link remote: 167.206.184.61:1195
Thu Jan 8 11:03:21 2009 Connection reset, restarting [0]
Thu Jan 8 11:03:21 2009 SIGUSR1[soft,connection-reset] received, process restarting
Thu Jan 8 11:03:26 2009 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Thu Jan 8 11:03:26 2009 Re-using SSL/TLS context
Thu Jan 8 11:03:26 2009 LZO compression initialized
Thu Jan 8 11:03:26 2009 Attempting to establish TCP connection with 167.206.184.61:1194
Thu Jan 8 11:03:26 2009 TCP connection established with 167.206.184.61:1194
Thu Jan 8 11:03:26 2009 TCPv4_CLIENT link local: [undef]
Thu Jan 8 11:03:26 2009 TCPv4_CLIENT link remote: 167.206.184.61:1194
Thu Jan 8 11:03:51 2009 Connection reset, restarting [0]
Thu Jan 8 11:03:51 2009 SIGUSR1[soft,connection-reset] received, process restarting
Thu Jan 8 11:03:56 2009 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Thu Jan 8 11:03:56 2009 Re-using SSL/TLS context
Thu Jan 8 11:03:56 2009 LZO compression initialized
Thu Jan 8 11:03:56 2009 Attempting to establish TCP connection with 167.206.184.61:1195
Thu Jan 8 11:03:57 2009 TCP connection established with 167.206.184.61:1195
Thu Jan 8 11:03:57 2009 TCPv4_CLIENT link local: [undef]
Thu Jan 8 11:03:57 2009 TCPv4_CLIENT link remote: 167.206.184.61:1195
Thu Jan 8 11:04:21 2009 Connection reset, restarting [0]
Thu Jan 8 11:04:21 2009 SIGUSR1[soft,connection-reset] received, process restarting
Thu Jan 8 11:04:26 2009 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Thu Jan 8 11:04:26 2009 Re-using SSL/TLS context
Thu Jan 8 11:04:26 2009 LZO compression initialized
Thu Jan 8 11:04:26 2009 Attempting to establish TCP connection with 167.206.184.61:1194
Thu Jan 8 11:04:27 2009 TCP connection established with 167.206.184.61:1194
Thu Jan 8 11:04:27 2009 TCPv4_CLIENT link local: [undef]
Thu Jan 8 11:04:27 2009 TCPv4_CLIENT link remote: 167.206.184.61:1194