Home/Support/Support Forum/wr11 openvpn
Welcome to Digi Forum, where you can ask questions and receive answers from other members of the community.

wr11 openvpn

0 votes
Hello,
I have a WR11 and I followed AN_046 to setup the WR11 as a VPN Server. From windows i generated all the certs and following the steps but i keep getting the following errors:

from WR11:
07:45:48, 13 Nov 2019,OVPN 0 down
07:45:48, 13 Nov 2019,Certificate Code Error
Lib: SSL routines
Func: SSL23_GET_CLIENT_HELLO
Reason: unknown protocol

from openvpn on windows:
Wed Nov 13 08:29:00 2019 OpenVPN 2.2.2 Win32-MSVC++ [SSL] [LZO2] [PKCS11] built on Dec 15 2011
Wed Nov 13 08:29:00 2019 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Wed Nov 13 08:29:01 2019 Control Channel MTU parms [ L:1557 D:138 EF:38 EB:0 ET:0 EL:0 ]
Wed Nov 13 08:29:01 2019 Socket Buffers: R=[65536->65536] S=[65536->65536]
Wed Nov 13 08:29:01 2019 Data Channel MTU parms [ L:1557 D:1450 EF:57 EB:4 ET:0 EL:0 ]
Wed Nov 13 08:29:01 2019 Local Options hash (VER=V4): '2dd3fcaf'
Wed Nov 13 08:29:01 2019 Expected Remote Options hash (VER=V4): '8114d01c'
Wed Nov 13 08:29:01 2019 UDPv4 link local: [undef]
Wed Nov 13 08:29:01 2019 UDPv4 link remote: 166.130.79.1:1194
Wed Nov 13 08:29:01 2019 TLS: Initial packet from 166.130.79.1:1194, sid=1a5c92f2 08853404
Wed Nov 13 08:30:01 2019 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)

Hopefully, something stands out.
asked Nov 13, 2019 in Digi TransPort Cellular by tgarcia916 New to the Community (0 points)

Please log in or register to answer this question.

1 Answer

0 votes
Hi and welcome to Digi Forums.

from that eventlog is not really possible to understand what is the issue here. You may want to enable debug and see more in details what is happening, following this guide:

http://ftp1.digi.com/support/documentation/QN64_How_to_Troubleshoot_OpenVPN_On_TPorts.pdf

Also, common issues happen when compression is enabled on the other side (not supported on WR routers) so be sure is not that case.

For any further help, please review our support options on our website: https://www.digi.com/support.
Please also note that Open VPN troubleshooting usually requires an Expert Support level. If your company already has it, please email to tech.support@digi.com and we will deeper troubleshoot the issue.

Regards,

Anny
Digi Technical Support Team
answered Jan 7 by annydigi New to the Community (26 points)
...