Citation:
Wed Feb 13 15:27:03 2019 SIGUSR1[soft,tls-error] received, process restarting
Wed Feb 13 15:27:03 2019 MANAGEMENT: >STATE:1550068023,RECONNECTING,tls-error,,,,,
Wed Feb 13 15:27:03 2019 Restart pause, 300 second(s)
Wed Feb 13 15:32:03 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]192.168.0.23:1194
Wed Feb 13 15:32:03 2019 Socket Buffers: R=[65536->65536] S=[65536->65536]
Wed Feb 13 15:32:03 2019 UDP link local: (not bound)
Wed Feb 13 15:32:03 2019 UDP link remote: [AF_INET]192.168.0.23:1194
Wed Feb 13 15:32:03 2019 MANAGEMENT: >STATE:1550068323,WAIT,,,,,,
Wed Feb 13 15:33:03 2019 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Wed Feb 13 15:33:03 2019 TLS Error: TLS handshake failed
Citation:
port 1194
proto udp
dev tun
ca ca.crt
cert server.crt
key server.key # This file should be kept secret
dh dh2048.pem
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist /var/log/openvpn/ipp.txt
push "redirect-gateway def1 bypass-dhcp"
push "dhcp-option DNS 208.67.222.222"
push "dhcp-option DNS 208.67.220.220"
keepalive 10 120
tls-auth ta.key 0 # This file is secret
cipher AES-256-CBC
user nobody
group nogroup
persist-key
persist-tun
status /var/log/openvpn/openvpn-status.log
log /var/log/openvpn/openvpn.log
log-append /var/log/openvpn/openvpn.log
verb 9
explicit-exit-notify 1
voici mon fichier client.ovpn
Citation:
client
dev tun
proto udp
remote 192.168.0.23 1194
resolv-retry infinite
nobind
user nobody
group nogroup
persist-key
persist-tun
remote-cert-tls server
tls-auth ta.key 1
cipher AES-256-CBC
# Set log file verbosity.
verb 4
<ca>
-----BEGIN CERTIFICATE-----
MIIEwTCCA6mgAwIBAgIJAJaS6zu77EVGMA0GCSqGSIb3DQEBCwUAMIGbMQswCQYD
VQQGEwJGUjELMAkGA1UECBMCRlIxFDASBgNVBAcTC01PTlRQRUxMSUVSMQ0wCwYD
...
v/7sGoRPpNzaNM+N8kG/264F/Ra5xSti8/2f3SQxIOLWgXO+5qpzNXO7Dsu14wNK
nHeO47OGNX/ZVGBGyFY5zNt8is2AvEydLDQjpXaxO0NP7p/efnelYvaR9CUvWuaq
bYCVopiYvwRP+EK8XwLlGZYCmFTe
-----END CERTIFICATE-----
</ca>
<cert>
Certificate:
...
OVjePRx4oPTmAIaoXpuqooI1Y8/8SrOVAZ6QH+hWoJnq60e7IR7vFhWtLpqwQRR+
NNsyT9N943AZjmZQkqQRERv57jDEV+UW1pqP9F1LPcEFigYS2FCHTwKy+OIfB8Rq
G88ygGsFNxMNxnqQHQ==
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQCv84/KSF70lzg8
dxGG6PzfUrBn6K7cVirFnKZOBKR9L0W59ZIxZJQKUNjcQJ1320FHBIvQ/x+wibG8
...
zkF3juYzLJ0QufKTjJl8IqtxH18E+DtY+ZzwpqeNsZGNVKXacyAKpxBqHYxOPK/8
Dxidk5+oJEfsu7NSLH4ELlgQ
-----END PRIVATE KEY-----
</key>