Business Community > Gateways > Omada OpenVPN client not connect to software OpenVPN server (on windows Server 2022) - [SOLVED]
< Gateways

Omada OpenVPN client not connect to software OpenVPN server (on windows Server 2022) - [SOLVED]

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

Omada OpenVPN client not connect to software OpenVPN server (on windows Server 2022) - [SOLVED]

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Omada OpenVPN client not connect to software OpenVPN server (on windows Server 2022) - [SOLVED]
Omada OpenVPN client not connect to software OpenVPN server (on windows Server 2022) - [SOLVED]
2024-04-07 19:27:13 - last edited 2024-04-15 06:34:27
Tags: #VPN #OpenVPN #Highlighted Thread
Model: ER706W  
Hardware Version: V1
Firmware Version: 1.0.4 Build 20240319

Hi

Sorry for my bad English
Has anyone managed to configure the Omada OpenVPN client (software controller on linux) connect to a server with openvpn (server mode) installed?
I have Windows Server 2022 in the cloud with OpenVPN running in server mode (Certificate-based configuration).

 

I prepared a *.ovpn file to contain certificates (<ca>, <cert>, <key> sections) and uploaded it to the Omada controller.
The same file uploaded to the OpenVPN software client works and connects.

 

TP-link does not connect from Omada. I don't even try, because there is nothing in the OpenVPN server logs.
I tried downgrading the OpenVPN version on the server from 3.x to 2.4. This still didn't help.

 

Example of my *.ovpn configuration:

 

-----

client
dev tun
proto udp
remote 145.xxx.xxx.xxx 1194
resolv-retry infinite
nobind
persist-key
persist-tun
remote-cert-tls server
cipher AES-256-GCM
connect-retry-max 25
verb 3
[cacert]
-----BEGIN CERTIFICATE-----
MIIE4DCCA8igAwIBAgIUA5SFtn4j4P7NPea2Nrk1mZ2CTFYwDQYJKoZIhvcNAQEL
...
7kOFSw==
-----END CERTIFICATE-----
[cacert]
[cert]
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADCBnjELMAkGA1UEBhMCUEwx
....
GBmPXSZcXkaKIaD3kIOlJi4BYADU
-----END CERTIFICATE-----
[cert]
[key]
-----BEGIN PRIVATE KEY-----
MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQClNn5d5g4EXv/2
...
sm/CxPdywek0R9si8qAcG9Q=
-----END PRIVATE KEY-----
[key]

 

I had to replace "<>" and chance ca_to_cacert  in the sertificate sections because the forum framework wouldn't go through

  0      
 
  0      
 
#1
Options
1 Accepted Solution
Re:Omada OpenVPN client not connect to software OpenVPN server (on windows Server 2022)-Solution
2024-04-12 12:14:18 - last edited 2024-04-15 06:34:27

  @TomMad 

 

I finally managed to connect
It's a pity that there is nothing about this in the sample materials. The key was to force tls-auth mode and set the client to key-direction 1. It shows the entire file in case anyone needs it. On server OpenVPN (server mode) version 2.4

 

client
dev tun
proto udp
remote x.x.x.x 1194
resolv-retry infinite
nobind
persist-key
persist-tun
remote-cert-tls server
auth SHA256
cipher AES-256-CBC
connect-retry-max 25
verb 3
<ca>
-----BEGIN CERTIFICATE-----
MIIE4DCCA8igAwIBAgIUA5SFtn4j4P7NPea2Nrk1mZ2CTFYwDQYJKoZIhvcNAQEL
BQAwgZ4xCzAJBgNVBAYTAlBMMQwwCgYDVQQIEwNETFMxEDAOBgNVBAcTB1dyb2Ns
....
Q3hegcTMsefG6hvhaMAnqPMATbteUtHtdVVKmjasPG9L/guXjnsXMSIw1rxPmfTl
kL78KeBqkiUL7kJ+DYB6VHAcoK0Lo+Cqoejz8NCFV7iaPEJrBAwGVUUdsyUAKq+G
7kOFSw==
-----END CERTIFICATE-----
</ca>
<dh>
-----BEGIN DH PARAMETERS-----
MIIBCAKCAQEArSqTZV/PtFfY3I/W0Q7489eepdP3WXHlVluLWskLSf6+gJfhY5S8
EwWqHLDWeKp1ne780v9yTNFDvo3UU1FZlNhBDxwta+K2t1DKj8AW0yWhZiNUmADb
...
BrSbTigig2N4lHP1zonP/xa1BuiydLsiJvlNtD+6jhcalCSt8aeSu6wMCgtVIRbw
oVXkWoD1RKbOKhqmkrXkyRCfgeP2mEz+mwIBAg==
-----END DH PARAMETERS-----
</dh>
<cert>
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADCBnjELMAkGA1UEBhMCUEwx
DDAKBgNVBAgTA0RMUzEQMA4GA1UEBxMHV3JvY2xhdzESMBAGA1UEChMJUm9jY28g
...
HYnDDI3i/kqmex8aX5nCFiyAREItlyTY4XVPbQjUbL7g4drc+kCo2E/GfiWRhbIu
48N+wukSc03QveZAZEEAIMuU9eabZrZAHTQrEZS6Gom64Jir2YpPqXX+clQyIEDl
GBmPXSZcXkaKIaD3kIOlJi4BYADU
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQClNn5d5g4EXv/2
dIqJPVTXOJyNbm4i2DfLrZ5zNmlHQ6PdOCZt0h8DP+O/oHdTB7/5sdlbMbziy7hT
...
SaqBGdaK0LrcOUQdPpGjLSyWCC4OoPVRzsCV14Evuu11jScCT+K153Mb+MDgmjwC
soapzDRZVsO/vuvEOdF2CT81vRzSDc0QwtQHywXbDPSqoVPLp5k2BPIdSo6C4LDP
sm/CxPdywek0R9si8qAcG9Q=
-----END PRIVATE KEY-----
</key>
<tls-auth>  
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
af921a2b8675477a5a2bf1bf3576408d
216b1dbfa70825ff1596dff526ab21da
...
00c00f0ab6e79bc1a2ab25086b9180ed
b387ae7fbceb6a28788058bef0d196c5
-----END OpenVPN Static key V1-----
</tls-auth>
key-direction 1
 

 

 

Recommended Solution
  1  
  1  
#3
Options
2 Reply
Re:Omada OpenVPN client not connect to software OpenVPN server (on windows Server 2022)
2024-04-08 02:13:15

Hi @TomMad 

Thanks for posting in our business forum.

Try a different cipher on your server.

Looks like all good to me. The router is supposed to connect. Is it working fine on your cellphone when you use this .ovpn?

 

  1  
  1  
#2
Options
Re:Omada OpenVPN client not connect to software OpenVPN server (on windows Server 2022)-Solution
2024-04-12 12:14:18 - last edited 2024-04-15 06:34:27

  @TomMad 

 

I finally managed to connect
It's a pity that there is nothing about this in the sample materials. The key was to force tls-auth mode and set the client to key-direction 1. It shows the entire file in case anyone needs it. On server OpenVPN (server mode) version 2.4

 

client
dev tun
proto udp
remote x.x.x.x 1194
resolv-retry infinite
nobind
persist-key
persist-tun
remote-cert-tls server
auth SHA256
cipher AES-256-CBC
connect-retry-max 25
verb 3
<ca>
-----BEGIN CERTIFICATE-----
MIIE4DCCA8igAwIBAgIUA5SFtn4j4P7NPea2Nrk1mZ2CTFYwDQYJKoZIhvcNAQEL
BQAwgZ4xCzAJBgNVBAYTAlBMMQwwCgYDVQQIEwNETFMxEDAOBgNVBAcTB1dyb2Ns
....
Q3hegcTMsefG6hvhaMAnqPMATbteUtHtdVVKmjasPG9L/guXjnsXMSIw1rxPmfTl
kL78KeBqkiUL7kJ+DYB6VHAcoK0Lo+Cqoejz8NCFV7iaPEJrBAwGVUUdsyUAKq+G
7kOFSw==
-----END CERTIFICATE-----
</ca>
<dh>
-----BEGIN DH PARAMETERS-----
MIIBCAKCAQEArSqTZV/PtFfY3I/W0Q7489eepdP3WXHlVluLWskLSf6+gJfhY5S8
EwWqHLDWeKp1ne780v9yTNFDvo3UU1FZlNhBDxwta+K2t1DKj8AW0yWhZiNUmADb
...
BrSbTigig2N4lHP1zonP/xa1BuiydLsiJvlNtD+6jhcalCSt8aeSu6wMCgtVIRbw
oVXkWoD1RKbOKhqmkrXkyRCfgeP2mEz+mwIBAg==
-----END DH PARAMETERS-----
</dh>
<cert>
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADCBnjELMAkGA1UEBhMCUEwx
DDAKBgNVBAgTA0RMUzEQMA4GA1UEBxMHV3JvY2xhdzESMBAGA1UEChMJUm9jY28g
...
HYnDDI3i/kqmex8aX5nCFiyAREItlyTY4XVPbQjUbL7g4drc+kCo2E/GfiWRhbIu
48N+wukSc03QveZAZEEAIMuU9eabZrZAHTQrEZS6Gom64Jir2YpPqXX+clQyIEDl
GBmPXSZcXkaKIaD3kIOlJi4BYADU
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQClNn5d5g4EXv/2
dIqJPVTXOJyNbm4i2DfLrZ5zNmlHQ6PdOCZt0h8DP+O/oHdTB7/5sdlbMbziy7hT
...
SaqBGdaK0LrcOUQdPpGjLSyWCC4OoPVRzsCV14Evuu11jScCT+K153Mb+MDgmjwC
soapzDRZVsO/vuvEOdF2CT81vRzSDc0QwtQHywXbDPSqoVPLp5k2BPIdSo6C4LDP
sm/CxPdywek0R9si8qAcG9Q=
-----END PRIVATE KEY-----
</key>
<tls-auth>  
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
af921a2b8675477a5a2bf1bf3576408d
216b1dbfa70825ff1596dff526ab21da
...
00c00f0ab6e79bc1a2ab25086b9180ed
b387ae7fbceb6a28788058bef0d196c5
-----END OpenVPN Static key V1-----
</tls-auth>
key-direction 1
 

 

 

Recommended Solution
  1  
  1  
#3
Options

Information

Helpful: 0

Views: 1108

Replies: 2

Tags

VPN OpenVPN Highlighted Thread
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.