Trusted, Bureaucrats, Administrators
12,424
edits
Changes
From Amahi Wiki
→Client reports "TLS handshake failed" and doesn't Connect
Typical problems with the VPNOpenVPN setup:
* You cannot It's not possible VPN into your network from your very own network . This is not possible and it will fail (kinda duh)* You cannot login two users simultaneously. The OpenVPN setup is single-user.* You cannot login to your network from another network with the exact same settings. This is not possible due to routing. You can probably reach your own HDA, but not other systems in the network, due to routing (the HDA has direct connection via the VPN tunnel).* Check that you have port forwarded 1194 udpUDP.
== Diagnose ==
* Is the Amahi [http://www.amahi.org/apps/openvpn OpenVPN] application installed in your HDA? (this is not required if you are on Amahi Fedora 14, but required on all later releases)
* Make sure your HDA's network IP range is different than that of the remote network. (e.g. if your HDA's IP address is 192.168.1.X, you cannot connect to it on a remote network also using 192.168.1.X)
* If you are running your HDA from a Verizon FiOS connection, you may experience strange disconnections. This may be due to the Actiontec router's small NAT table. Please see guides [http://www.verizonfioswiki.com/index.php/Using_Your_Own_Router here] for instructions on how to use your own router.
* If you have a Vonage V-Portal (or perhaps other voip adapters as well), plug your router into your modem, then the v-portal into your router. Vonage tells you to put the v-portal between the modem and the router, but I was unable to connect to vpn until I moved the adapter behind the router.
== Moving to TCP ==
If UDP is not working because of a shitty your ISP (see list below). Then you will have to change from udp to tcp and change your port forwarding of 1194/udp to 1194/tcp.
== Client side: (Windows) ==
If you have a thing saying "HomeHDA > " then mouse over it and click edit settings. Change:
to
== Blocked port 1194 ==
Sometimes port 1194 is blocked if you are behind a corporate firewall or someother some other firewall. The trick is then to use a port that is open. If you are not running https on your amahiAmahi, using port 443 is a good choice. To move to port 443, edit this file: <blockquote><u>Fedora</u></blockquote> gedit /etc/openvpn/amahi.confor sudo nano -w /etc/openvpn/amahi.conf
into
Of course you also need to tell the client side to use port 443!
Add the following line to your client's config file
If for some reason the DDNS (yourhda.com) is not working but your control panel is updating, then add this line at the top of the config file.
== Manually (Windows) ==
Similarly, locate the configuration file and change
to
== On the Server side ==
Edit this file:
<blockquote><u>Fedora</u></blockquote>
gedit /etc/openvpn/amahi.conf
or
sudo nano -w /etc/openvpn/amahi.conf
or
change
to
Restart both sides and you are now using openvpn OpenVPN over tcp.,And and add your isp [http://en.wikipedia.org/wiki/Internet_service_provider ISP] below.
== List of bad ISPs ==
* Thames Valley Communications (Groton, CT)
==Client Reports reports "TLS handshake failed" and Does Not doesn't Connect==
This is usually caused by packet corruption that may happen for some users.<br>
Follow the tutorial on "[[Prevent_SSL_Handshake_Timeouts_In_OpenVPN|Prevent SSL Handshake Timeouts In OpenVPN]]" page to fix this.
Back to the [[Troubleshooting]].
[[Category: VPN]]
