Hallo alle miteinander,
ich bin ein wenig am verzweifeln, weil ich es einfach nicht hinbekomme, zu meinem OpenVPN Server auf dem Pi zu connecten.
Wenn ich die interne IP des Pi's benutze funktioniert alles einwandfrei. Sobald ich aber versuche über die externe IP zu verbinden, komm ein Timeout und es funktioniert einfach nicht.
Den Port 1194 habe ich im Router freigegeben, ein Screenshot davon ist hier zu sehen: https://dl.dropboxusercontent.com/u/5258185/Router.png
Ich weiß wirklich nicht mehr was falsch sein könnte.
Ich hoffe ihr könnt mir helfen.
Grüße,
tietze111
Server config:
ZitatAlles anzeigendev tun
proto udp
port 1194
ca /etc/openvpn/easy-rsa/keys/ca.crt
cert /etc/openvpn/easy-rsa/keys/server.crt
key /etc/openvpn/easy-rsa/keys/server.key
dh /etc/openvpn/easy-rsa/keys/dh1024.pem
user nobody
group nogroup
server 10.8.0.0 255.255.255.0
persist-key
persist-tun
status /var/log/openvpn-status.log
verb 3
client-to-client
push "redirect-gateway def1 bypass-dhcp"
#set the dns servers
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
log-append /var/log/openvpn
comp-lzo
duplicate-cn
keepalive 10 120
Output von nmap:
Zitatsudo nmap -sU localhost -p 1194
Starting Nmap 6.00 ( http://nmap.org ) at 2014-11-08 22:45 UTC
Nmap scan report for localhost (127.0.0.1)
Host is up.
Other addresses for localhost (not scanned): 127.0.0.1
PORT STATE SERVICE
1194/udp open|filtered openvpn
Log vom Client:
ZitatAlles anzeigenSat Nov 08 23:46:00 2014 OpenVPN 2.3.5 i686-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [IPv6] built on Oct 28 2014
Sat Nov 08 23:46:00 2014 library versions: OpenSSL 1.0.1j 15 Oct 2014, LZO 2.05
Enter Management Password:
Sat Nov 08 23:46:00 2014 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Sat Nov 08 23:46:00 2014 Need hold release from management interface, waiting...
Sat Nov 08 23:46:01 2014 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Sat Nov 08 23:46:01 2014 MANAGEMENT: CMD 'state on'
Sat Nov 08 23:46:01 2014 MANAGEMENT: CMD 'log all on'
Sat Nov 08 23:46:01 2014 MANAGEMENT: CMD 'hold off'
Sat Nov 08 23:46:01 2014 MANAGEMENT: CMD 'hold release'
Sat Nov 08 23:46:01 2014 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Sat Nov 08 23:46:01 2014 Socket Buffers: R=[65536->65536] S=[64512->64512]
Sat Nov 08 23:46:01 2014 MANAGEMENT: >STATE:1415486761,RESOLVE,,,
Sat Nov 08 23:46:01 2014 UDPv4 link local: [undef]
Sat Nov 08 23:46:01 2014 UDPv4 link remote: [AF_INET]46.5.0.20:1194
Sat Nov 08 23:46:01 2014 MANAGEMENT: >STATE:1415486761,WAIT,,,
Sat Nov 08 23:47:01 2014 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sat Nov 08 23:47:01 2014 TLS Error: TLS handshake failed
Sat Nov 08 23:47:01 2014 SIGUSR1[soft,tls-error] received, process restarting
Sat Nov 08 23:47:01 2014 MANAGEMENT: >STATE:1415486821,RECONNECTING,tls-error,,
Sat Nov 08 23:47:01 2014 Restart pause, 2 second(s)
Sat Nov 08 23:47:03 2014 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Sat Nov 08 23:47:03 2014 Socket Buffers: R=[65536->65536] S=[64512->64512]
Sat Nov 08 23:47:03 2014 MANAGEMENT: >STATE:1415486823,RESOLVE,,,
Sat Nov 08 23:47:03 2014 UDPv4 link local: [undef]
Sat Nov 08 23:47:03 2014 UDPv4 link remote: [AF_INET]46.5.0.20:1194
Sat Nov 08 23:47:03 2014 MANAGEMENT: >STATE:1415486823,WAIT,,,
Sat Nov 08 23:48:03 2014 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sat Nov 08 23:48:03 2014 TLS Error: TLS handshake failed
Sat Nov 08 23:48:03 2014 SIGUSR1[soft,tls-error] received, process restarting
Sat Nov 08 23:48:03 2014 MANAGEMENT: >STATE:1415486883,RECONNECTING,tls-error,,
Sat Nov 08 23:48:03 2014 Restart pause, 2 second(s)
Sat Nov 08 23:48:05 2014 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Sat Nov 08 23:48:05 2014 Socket Buffers: R=[65536->65536] S=[64512->64512]
Sat Nov 08 23:48:05 2014 MANAGEMENT: >STATE:1415486885,RESOLVE,,,
Sat Nov 08 23:48:05 2014 UDPv4 link local: [undef]
Sat Nov 08 23:48:05 2014 UDPv4 link remote: [AF_INET]46.5.0.20:1194
Sat Nov 08 23:48:05 2014 MANAGEMENT: >STATE:1415486885,WAIT,,,
Sat Nov 08 23:49:05 2014 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sat Nov 08 23:49:05 2014 TLS Error: TLS handshake failed
Sat Nov 08 23:49:05 2014 SIGUSR1[soft,tls-error] received, process restarting
Sat Nov 08 23:49:05 2014 MANAGEMENT: >STATE:1415486945,RECONNECTING,tls-error,,
Sat Nov 08 23:49:05 2014 Restart pause, 2 second(s)
Sat Nov 08 23:49:07 2014 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Sat Nov 08 23:49:07 2014 Socket Buffers: R=[65536->65536] S=[64512->64512]
Sat Nov 08 23:49:07 2014 MANAGEMENT: >STATE:1415486947,RESOLVE,,,
Sat Nov 08 23:49:07 2014 UDPv4 link local: [undef]
Sat Nov 08 23:49:07 2014 UDPv4 link remote: [AF_INET]46.5.0.20:1194
Sat Nov 08 23:49:07 2014 MANAGEMENT: >STATE:1415486947,WAIT,,,
Sat Nov 08 23:50:07 2014 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sat Nov 08 23:50:07 2014 TLS Error: TLS handshake failed
Sat Nov 08 23:50:07 2014 SIGUSR1[soft,tls-error] received, process restarting
Sat Nov 08 23:50:07 2014 MANAGEMENT: >STATE:1415487007,RECONNECTING,tls-error,,
Sat Nov 08 23:50:07 2014 Restart pause, 2 second(s)
Sat Nov 08 23:50:09 2014 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Sat Nov 08 23:50:09 2014 Socket Buffers: R=[65536->65536] S=[64512->64512]
Sat Nov 08 23:50:09 2014 MANAGEMENT: >STATE:1415487009,RESOLVE,,,
Sat Nov 08 23:50:09 2014 UDPv4 link local: [undef]
Sat Nov 08 23:50:09 2014 UDPv4 link remote: [AF_INET]46.5.0.20:1194
Sat Nov 08 23:50:09 2014 MANAGEMENT: >STATE:1415487009,WAIT,,,
Sat Nov 08 23:51:09 2014 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sat Nov 08 23:51:09 2014 TLS Error: TLS handshake failed
Sat Nov 08 23:51:09 2014 SIGUSR1[soft,tls-error] received, process restarting
Sat Nov 08 23:51:09 2014 MANAGEMENT: >STATE:1415487069,RECONNECTING,tls-error,,
Sat Nov 08 23:51:09 2014 Restart pause, 2 second(s)
Sat Nov 08 23:51:11 2014 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Sat Nov 08 23:51:11 2014 Socket Buffers: R=[65536->65536] S=[64512->64512]
Sat Nov 08 23:51:11 2014 MANAGEMENT: >STATE:1415487071,RESOLVE,,,
Sat Nov 08 23:51:11 2014 UDPv4 link local: [undef]
Sat Nov 08 23:51:11 2014 UDPv4 link remote: [AF_INET]46.5.0.20:1194
Sat Nov 08 23:51:11 2014 MANAGEMENT: >STATE:1415487071,WAIT,,,
Sat Nov 08 23:52:11 2014 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sat Nov 08 23:52:11 2014 TLS Error: TLS handshake failed
Sat Nov 08 23:52:11 2014 SIGUSR1[soft,tls-error] received, process restarting
Sat Nov 08 23:52:11 2014 MANAGEMENT: >STATE:1415487131,RECONNECTING,tls-error,,
Sat Nov 08 23:52:11 2014 Restart pause, 2 second(s)
Sat Nov 08 23:52:13 2014 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Sat Nov 08 23:52:13 2014 Socket Buffers: R=[65536->65536] S=[64512->64512]
Sat Nov 08 23:52:13 2014 MANAGEMENT: >STATE:1415487133,RESOLVE,,,
Sat Nov 08 23:52:13 2014 UDPv4 link local: [undef]
Sat Nov 08 23:52:13 2014 UDPv4 link remote: [AF_INET]46.5.0.20:1194
Sat Nov 08 23:52:13 2014 MANAGEMENT: >STATE:1415487133,WAIT,,,
Sat Nov 08 23:53:13 2014 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sat Nov 08 23:53:13 2014 TLS Error: TLS handshake failed
Sat Nov 08 23:53:13 2014 SIGUSR1[soft,tls-error] received, process restarting
Sat Nov 08 23:53:13 2014 MANAGEMENT: >STATE:1415487193,RECONNECTING,tls-error,,
Sat Nov 08 23:53:13 2014 Restart pause, 2 second(s)
Sat Nov 08 23:53:15 2014 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Sat Nov 08 23:53:15 2014 Socket Buffers: R=[65536->65536] S=[64512->64512]
Sat Nov 08 23:53:15 2014 MANAGEMENT: >STATE:1415487195,RESOLVE,,,
Sat Nov 08 23:53:15 2014 UDPv4 link local: [undef]
Sat Nov 08 23:53:15 2014 UDPv4 link remote: [AF_INET]46.5.0.20:1194
Sat Nov 08 23:53:15 2014 MANAGEMENT: >STATE:1415487195,WAIT,,,
Sat Nov 08 23:53:24 2014 SIGTERM[hard,] received, process exiting
Sat Nov 08 23:53:24 2014 MANAGEMENT: >STATE:1415487204,EXITING,SIGTERM,,