Business Community > All Threads > Omada OpenVPN client not connect to software OpenVPN server (on windows Server 2022) - [SOLVED]
< All Threads

Omada OpenVPN client not connect to software OpenVPN server (on windows Server 2022) - [SOLVED]

Omada OpenVPN client not connect to software OpenVPN server (on windows Server 2022) - [SOLVED]

Omada OpenVPN client not connect to software OpenVPN server (on windows Server 2022) - [SOLVED]
Omada OpenVPN client not connect to software OpenVPN server (on windows Server 2022) - [SOLVED]
2024-04-07 19:27:13 - last edited 2024-04-15 06:34:27
Tags: #VPN #OpenVPN #Highlighted Thread
Model: ER706W  
Hardware Version: V1
Firmware Version: 1.0.4 Build 20240319

Hi

Sorry for my bad English
Has anyone managed to configure the Omada OpenVPN client (software controller on linux) connect to a server with openvpn (server mode) installed?
I have Windows Server 2022 in the cloud with OpenVPN running in server mode (Certificate-based configuration).

 

I prepared a *.ovpn file to contain certificates (<ca>, <cert>, <key> sections) and uploaded it to the Omada controller.
The same file uploaded to the OpenVPN software client works and connects.

 

TP-link does not connect from Omada. I don't even try, because there is nothing in the OpenVPN server logs.
I tried downgrading the OpenVPN version on the server from 3.x to 2.4. This still didn't help.

 

Example of my *.ovpn configuration:

 

-----

client
dev tun
proto udp
remote 145.xxx.xxx.xxx 1194
resolv-retry infinite
nobind
persist-key
persist-tun
remote-cert-tls server
cipher AES-256-GCM
connect-retry-max 25
verb 3
[cacert]
-----BEGIN CERTIFICATE-----
MIIE4DCCA8igAwIBAgIUA5SFtn4j4P7NPea2Nrk1mZ2CTFYwDQYJKoZIhvcNAQEL
...
7kOFSw==
-----END CERTIFICATE-----
[cacert]
[cert]
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADCBnjELMAkGA1UEBhMCUEwx
....
GBmPXSZcXkaKIaD3kIOlJi4BYADU
-----END CERTIFICATE-----
[cert]
[key]
-----BEGIN PRIVATE KEY-----
MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQClNn5d5g4EXv/2
...
sm/CxPdywek0R9si8qAcG9Q=
-----END PRIVATE KEY-----
[key]

 

I had to replace "<>" and chance ca_to_cacert  in the sertificate sections because the forum framework wouldn't go through

  0      
 
  0      
 
#1
Options
1 Accepted Solution
Re:Omada OpenVPN client not connect to software OpenVPN server (on windows Server 2022)-Solution
2024-04-12 12:14:18 - last edited 2024-04-15 06:34:27

  @TomMad 

 

I finally managed to connect
It's a pity that there is nothing about this in the sample materials. The key was to force tls-auth mode and set the client to key-direction 1. It shows the entire file in case anyone needs it. On server OpenVPN (server mode) version 2.4

 

client
dev tun
proto udp
remote x.x.x.x 1194
resolv-retry infinite
nobind
persist-key
persist-tun
remote-cert-tls server
auth SHA256
cipher AES-256-CBC
connect-retry-max 25
verb 3
<ca>
-----BEGIN CERTIFICATE-----
MIIE4DCCA8igAwIBAgIUA5SFtn4j4P7NPea2Nrk1mZ2CTFYwDQYJKoZIhvcNAQEL
BQAwgZ4xCzAJBgNVBAYTAlBMMQwwCgYDVQQIEwNETFMxEDAOBgNVBAcTB1dyb2Ns
....
Q3hegcTMsefG6hvhaMAnqPMATbteUtHtdVVKmjasPG9L/guXjnsXMSIw1rxPmfTl
kL78KeBqkiUL7kJ+DYB6VHAcoK0Lo+Cqoejz8NCFV7iaPEJrBAwGVUUdsyUAKq+G
7kOFSw==
-----END CERTIFICATE-----
</ca>
<dh>
-----BEGIN DH PARAMETERS-----
MIIBCAKCAQEArSqTZV/PtFfY3I/W0Q7489eepdP3WXHlVluLWskLSf6+gJfhY5S8
EwWqHLDWeKp1ne780v9yTNFDvo3UU1FZlNhBDxwta+K2t1DKj8AW0yWhZiNUmADb
...
BrSbTigig2N4lHP1zonP/xa1BuiydLsiJvlNtD+6jhcalCSt8aeSu6wMCgtVIRbw
oVXkWoD1RKbOKhqmkrXkyRCfgeP2mEz+mwIBAg==
-----END DH PARAMETERS-----
</dh>
<cert>
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADCBnjELMAkGA1UEBhMCUEwx
DDAKBgNVBAgTA0RMUzEQMA4GA1UEBxMHV3JvY2xhdzESMBAGA1UEChMJUm9jY28g
...
HYnDDI3i/kqmex8aX5nCFiyAREItlyTY4XVPbQjUbL7g4drc+kCo2E/GfiWRhbIu
48N+wukSc03QveZAZEEAIMuU9eabZrZAHTQrEZS6Gom64Jir2YpPqXX+clQyIEDl
GBmPXSZcXkaKIaD3kIOlJi4BYADU
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQClNn5d5g4EXv/2
dIqJPVTXOJyNbm4i2DfLrZ5zNmlHQ6PdOCZt0h8DP+O/oHdTB7/5sdlbMbziy7hT
...
SaqBGdaK0LrcOUQdPpGjLSyWCC4OoPVRzsCV14Evuu11jScCT+K153Mb+MDgmjwC
soapzDRZVsO/vuvEOdF2CT81vRzSDc0QwtQHywXbDPSqoVPLp5k2BPIdSo6C4LDP
sm/CxPdywek0R9si8qAcG9Q=
-----END PRIVATE KEY-----
</key>
<tls-auth>  
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
af921a2b8675477a5a2bf1bf3576408d
216b1dbfa70825ff1596dff526ab21da
...
00c00f0ab6e79bc1a2ab25086b9180ed
b387ae7fbceb6a28788058bef0d196c5
-----END OpenVPN Static key V1-----
</tls-auth>
key-direction 1
 

 

 

Recommended Solution
  1  
  1  
#3
Options
2 Reply
Re:Omada OpenVPN client not connect to software OpenVPN server (on windows Server 2022)
2024-04-08 02:13:15

Hi @TomMad 

Thanks for posting in our business forum.

Try a different cipher on your server.

Looks like all good to me. The router is supposed to connect. Is it working fine on your cellphone when you use this .ovpn?

 

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting Manual ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. Don't be a lazy asker. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  1  
  1  
#2
Options
Re:Omada OpenVPN client not connect to software OpenVPN server (on windows Server 2022)-Solution
2024-04-12 12:14:18 - last edited 2024-04-15 06:34:27

  @TomMad 

 

I finally managed to connect
It's a pity that there is nothing about this in the sample materials. The key was to force tls-auth mode and set the client to key-direction 1. It shows the entire file in case anyone needs it. On server OpenVPN (server mode) version 2.4

 

client
dev tun
proto udp
remote x.x.x.x 1194
resolv-retry infinite
nobind
persist-key
persist-tun
remote-cert-tls server
auth SHA256
cipher AES-256-CBC
connect-retry-max 25
verb 3
<ca>
-----BEGIN CERTIFICATE-----
MIIE4DCCA8igAwIBAgIUA5SFtn4j4P7NPea2Nrk1mZ2CTFYwDQYJKoZIhvcNAQEL
BQAwgZ4xCzAJBgNVBAYTAlBMMQwwCgYDVQQIEwNETFMxEDAOBgNVBAcTB1dyb2Ns
....
Q3hegcTMsefG6hvhaMAnqPMATbteUtHtdVVKmjasPG9L/guXjnsXMSIw1rxPmfTl
kL78KeBqkiUL7kJ+DYB6VHAcoK0Lo+Cqoejz8NCFV7iaPEJrBAwGVUUdsyUAKq+G
7kOFSw==
-----END CERTIFICATE-----
</ca>
<dh>
-----BEGIN DH PARAMETERS-----
MIIBCAKCAQEArSqTZV/PtFfY3I/W0Q7489eepdP3WXHlVluLWskLSf6+gJfhY5S8
EwWqHLDWeKp1ne780v9yTNFDvo3UU1FZlNhBDxwta+K2t1DKj8AW0yWhZiNUmADb
...
BrSbTigig2N4lHP1zonP/xa1BuiydLsiJvlNtD+6jhcalCSt8aeSu6wMCgtVIRbw
oVXkWoD1RKbOKhqmkrXkyRCfgeP2mEz+mwIBAg==
-----END DH PARAMETERS-----
</dh>
<cert>
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADCBnjELMAkGA1UEBhMCUEwx
DDAKBgNVBAgTA0RMUzEQMA4GA1UEBxMHV3JvY2xhdzESMBAGA1UEChMJUm9jY28g
...
HYnDDI3i/kqmex8aX5nCFiyAREItlyTY4XVPbQjUbL7g4drc+kCo2E/GfiWRhbIu
48N+wukSc03QveZAZEEAIMuU9eabZrZAHTQrEZS6Gom64Jir2YpPqXX+clQyIEDl
GBmPXSZcXkaKIaD3kIOlJi4BYADU
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQClNn5d5g4EXv/2
dIqJPVTXOJyNbm4i2DfLrZ5zNmlHQ6PdOCZt0h8DP+O/oHdTB7/5sdlbMbziy7hT
...
SaqBGdaK0LrcOUQdPpGjLSyWCC4OoPVRzsCV14Evuu11jScCT+K153Mb+MDgmjwC
soapzDRZVsO/vuvEOdF2CT81vRzSDc0QwtQHywXbDPSqoVPLp5k2BPIdSo6C4LDP
sm/CxPdywek0R9si8qAcG9Q=
-----END PRIVATE KEY-----
</key>
<tls-auth>  
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
af921a2b8675477a5a2bf1bf3576408d
216b1dbfa70825ff1596dff526ab21da
...
00c00f0ab6e79bc1a2ab25086b9180ed
b387ae7fbceb6a28788058bef0d196c5
-----END OpenVPN Static key V1-----
</tls-auth>
key-direction 1
 

 

 

Recommended Solution
  1  
  1  
#3
Options

Information

Helpful: 0

Views: 586

Replies: 2

Tags

VPN OpenVPN Highlighted Thread
Related Articles
ACLs to block OpenVPN client connections to specific VLAN
763 0
TL-ER605 as OpenVpn client on Openvpn Access Server 2.11.3
621 0
Can not connect to OPENVPN server after 10 client is on
534 0
Omada Software + Surfshark OpenVPN client
892 0
Trouble setting up OpenVPN client (for ExpressVPN) on ER 605 V2
182 0
Difference between OpenVPN and SSL VPN
1280 0
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.