OpenVPN broken again

After upgrading to core 88 or 89 OpenVPN appears broken again. Clients that are still at core 87 still working fine. I have two clients that even after regenerating everything from scratch just get caught in a TLS failure loop: TLS failed to negotiate key after 60s, restarting. I can ping those clients WAN IP address so I know I am talking to them. Logs don’t hold any further clue

Probably not ipFire version problem. Just don’t know where to look from here. Hints would be appreciated

Nothing was changed with OpenVPN in Core Update 189 or Core Update 188.

I have had systems running both CU188 and CU189 and the OpenVPN connections have worked without any problems.

In the last two weeks I was away from home and connected every day into my home network, which is running CU189, without any problems.

The message you are getting can occur if there is some issue with the IP address or FQDN specified for the OpenVPN connection.

On the OpenVPN WUI page in the box labelled Local VPN Hostname/IP, have you specified a DDNS FQDN or an IP address?

If it is a Local VPN Hostname, is the DDNS updated to the correct IP for your Internet connection?

I resorted to my “last resort” solution, and just reloaded ipFire from scratch. OpenVPN now works fine.

1 Like

Verify the server and client configurations for TLS to make sure they are accurate and compatible. Make that the tls-crypt or tls-auth directives are configured correctly on both ends.

Firewall Settings: Verify that the required ports—typically UDP port 1194—are not blocked by the firewall settings on the client and server. Firewall rules may need to be changed to permit traffic.

Certificates and Keys: Verify that the client and server have the certificates and keys installed correctly and that they are still valid. If using TLS authentication mode1, make sure the client has the correct pre-shared key (PSK).