openvpn-ui icon indicating copy to clipboard operation
openvpn-ui copied to clipboard

Published 20 hours ago verified publisher icon d3vilh

TLS error with client connection

Open SKJoy opened this issue 8 months ago • 3 comments

OpenVPN GUI (client application) log says;

Sun Jun 23 19:11:29 2024 MANAGEMENT: >STATE:1719148289,AUTH,,,,,,
Sun Jun 23 19:11:29 2024 TLS: Initial packet from [AF_INET]192.168.1.21:1194, sid=4af197a1 be5346b5
Sun Jun 23 19:11:29 2024 tls-crypt unwrap error: packet too short
Sun Jun 23 19:11:29 2024 TLS Error: tls-crypt unwrapping failed from [AF_INET]192.168.1.21:1194

What I did;

  • Deployed both OpenVPN Server and Admin UI containers
  • Manually created ./fw-rules.sh with default contents
  • Manually created server.conf with default contents
  • Server running in LAN with IP 192.168.1.21
  • Disabled firewall on the server
  • OpenVPN Server & Admin UI containers seems to run fine
  • Successfully accessing (working) with the Admin UI with web interface
  • Updated client profile to use server IP 192.168.1.21
  • Created Test certificate and downloaded the Test.ovpn file
  • Attempted connecting to server with OpenVPN GUI client application with Test.ovpn profile imported; on another machine within the same LAN with IP 192.168.1.10

My docker-compose.yml file (changed the Admin UI HTTP port to avoid existing conflict);

services:
  openvpn:
      container_name: openvpn
      image: d3vilh/openvpn-server:latest
      privileged: true
      ports: 
        - "1194:1194/udp"
      environment:
          TRUST_SUB: 10.0.70.0/24
          GUEST_SUB: 10.0.71.0/24
          HOME_SUB: 192.168.88.0/24
      volumes:
          - ./pki:/etc/openvpn/pki
          - ./clients:/etc/openvpn/clients
          - ./config:/etc/openvpn/config
          - ./staticclients:/etc/openvpn/staticclients
          - ./log:/var/log/openvpn
          - ./fw-rules.sh:/opt/app/fw-rules.sh
          - ./server.conf:/etc/openvpn/server.conf
      cap_add:
          - NET_ADMIN
      restart: always
  openvpn-ui:
      container_name: openvpn-ui
      image: d3vilh/openvpn-ui:latest
      environment:
          - OPENVPN_ADMIN_USERNAME=admin
          - OPENVPN_ADMIN_PASSWORD=password
      privileged: true
      ports:
          - "58080:8080/tcp"
      volumes:
          - ./:/etc/openvpn
          - ./db:/opt/openvpn-ui/db
          - ./pki:/usr/share/easy-rsa/pki
          - /var/run/docker.sock:/var/run/docker.sock:ro
      restart: always

SKJoy avatar Jun 23 '24 13:06 SKJoy