Set up what i thought was a simple OpenVPN connection but am unable to connect. Fairly new to Pepwave - is there any logging i can turn on to see how the handshake progressed or didn’t progress?
Am i missing some other setting, as the instructions indicated a simple setup from remote user access. I do not have any firewall settings on the server or anything that i know of that would get in the way.
Model:Pepwave MAX HD2
Firmware:
8.1.2 build 5114
As described
Enabled Remote Access for OpenVPN
Enabled one Wan address, the only public one
Added a normal user account.
Downloaded the split-tunnel OpenVPN Client Profile:
Used profile with OpenVPN on Windows Client
Turned off firewall and virus detection (after 1st failure)
Unable to connect, TLS Handshake Error. Below is the log. Below that is the profile
2021-05-22 21:04:50 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
2021-05-22 21:04:50 Need hold release from management interface, waiting…
2021-05-22 21:04:51 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
2021-05-22 21:04:51 MANAGEMENT: CMD ‘state on’
2021-05-22 21:04:51 MANAGEMENT: CMD ‘log all on’
2021-05-22 21:04:51 MANAGEMENT: CMD ‘echo all on’
2021-05-22 21:04:51 MANAGEMENT: CMD ‘bytecount 5’
2021-05-22 21:04:51 MANAGEMENT: CMD ‘hold off’
2021-05-22 21:04:51 MANAGEMENT: CMD ‘hold release’
2021-05-22 21:04:53 MANAGEMENT: CMD ‘username “Auth” “username”’
2021-05-22 21:04:53 MANAGEMENT: CMD ‘password […]’
2021-05-22 21:04:53 Outgoing Control Channel Encryption: Cipher ‘AES-256-CTR’ initialized with 256 bit key
2021-05-22 21:04:53 Outgoing Control Channel Encryption: Using 256 bit message hash ‘SHA256’ for HMAC authentication
2021-05-22 21:04:53 Incoming Control Channel Encryption: Cipher ‘AES-256-CTR’ initialized with 256 bit key
2021-05-22 21:04:53 Incoming Control Channel Encryption: Using 256 bit message hash ‘SHA256’ for HMAC authentication
2021-05-22 21:04:53 TCP/UDP: Preserving recently used remote address: [AF_INET]100.64.204.219:1194
2021-05-22 21:04:53 Socket Buffers: R=[65536->65536] S=[65536->65536]
2021-05-22 21:04:53 UDP link local: (not bound)
2021-05-22 21:04:53 UDP link remote: [AF_INET]xx.xx.xx.xx:1194
2021-05-22 21:04:53 MANAGEMENT: >STATE:1621731893,WAIT,
2021-05-22 21:05:53 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2021-05-22 21:05:53 TLS Error: TLS handshake failed
2021-05-22 21:05:53 SIGUSR1[soft,tls-error] received, process restarting
=====================
client
dev tun
proto udp
remote xxx.xx.xx.xx 1194
remote-random
resolv-retry infinite
nobind
persist-key
persist-tun
auth-user-pass
verb 3
setenv CLIENT_CERT 0
remote-cert-tls server
tls-client
reneg-sec 3600
cipher AES-256-GCM