OpenVPN Certificate Failed Error on Archer A7V5

OpenVPN Certificate Failed Error on Archer A7V5
OpenVPN Certificate Failed Error on Archer A7V5
2020-10-22 14:36:37
Model: Archer A7
Hardware Version: V5
Firmware Version: 1.0.11 Build 20190810 rel.50990(5553)

Hi,

 

I setup one A7 with OpenVPN and it worked flawlessly.

I am trying to do it the exact same way on the exact same router and when trying to connect on the client (I have tested on ios, android & windows) I get the following error: 

 

There was an error attempting to connect to the selected server.

 

Error message: OpenSSLContext:SSL:read_cleartext: BIO_read failed, cap-2576 status--1: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed

 

 

I have generated the certificate several times no with no luck. I do make a change to the "remote" line of the config file to reflect the public IP, which I also had to do at the working location and had no problem. 

 

Any assistance/ideas would be greatly appreciated. 

0
0
#1
Options
6 Reply
Re:OpenVPN Certificate Failed Error on Archer A7V5
2020-10-22 22:28:57

@Hairoun 

 

Rather than the IP address, have you tried to use the DDNS address? (Advanced > Network > Dynamic DNS)

 

If I understand it right, do you have two A7's? If so, change the service port on the second A7, both using the same exact port numbers would not work if both are behind the same router.

0
0
#2
Options
Re:OpenVPN Certificate Failed Error on Archer A7V5
2020-10-23 00:04:41

@Tony 

Thanks for your reply.

 

I haven't tried using DNS as I have a static IP from my ISP. But I will try as a step in troubleshooting.

 

And I am using different service ports on the different routers. 

 

I'll keep you updated. Thanks again.

0
0
#3
Options
Re:OpenVPN Certificate Failed Error on Archer A7V5
2020-10-23 13:25:55

@Tony 

 

HI,

 

I tried the DDNS solution with the same error. This is the log file from my ios client:

2020-10-23 09:20:38 EVENT: CONNECTING

2020-10-23 09:20:38 Tunnel Options:V4,dev-type tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-client

2020-10-23 09:20:38 Creds: UsernameEmpty/PasswordEmpty

2020-10-23 09:20:38 Peer Info:
IV_VER=3.git::b08a6c37
IV_PLAT=ios
IV_NCP=2
IV_TCPNL=1
IV_PROTO=2
IV_LZO_STUB=1
IV_COMP_STUB=1
IV_COMP_STUBv2=1
IV_AUTO_SESS=1
IV_GUI_VER=net.openvpn.connect.ios_3.2.1-3429
IV_SSO=openurl


2020-10-23 09:20:40 VERIFY FAIL: depth=0, /C=CN/ST=GD/L=ShenZhen/O=TP-Link/OU=SOHO-I18N/CN=server/name=EasyRSA/emailAddress=xxxx@xxxx [unable to get local issuer certificate]

2020-10-23 09:20:40 Transport Error: OpenSSLContext::SSL::read_cleartext: BIO_read failed, cap=2576 status=-1: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed

2020-10-23 09:20:40 EVENT: CERT_VERIFY_FAIL OpenSSLContext::SSL::read_cleartext: BIO_read failed, cap=2576 status=-1: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed [ERR]

2020-10-23 09:20:40 Raw stats on disconnect:
BYTES_IN : 1444
BYTES_OUT : 537
PACKETS_IN : 7
PACKETS_OUT : 11
SSL_ERROR : 1

0
0
#4
Options
Re:OpenVPN Certificate Failed Error on Archer A7V5
2020-10-23 22:24:47

@Hairoun 

 

Thank you for the info.

 

With respect to the firmware, the US region routers have the 200721 build. If you visit our official website and look at available firmware is there a newer firmware? If so, please update it and reconfigure the router to test again. 

 

If the issue still happens, please let me know.

0
0
#5
Options
Re:OpenVPN Certificate Failed Error on Archer A7V5
2020-10-28 18:17:50

@Tony Hi,

 

Thanks for your continued assistance.

 

I have updated the firmware with the same problem.

 

 

Very strange.

 

0
0
#6
Options
Re:OpenVPN Certificate Failed Error on Archer A7V5
2020-10-28 22:24:59

@Hairoun 

 

Ya, definitely.

 

Please reach out to our support team here: link

 

They will be able to dive deeper with respect to your issue and escalate it to a senior engineer if needed to resolve it.

0
0
#7
Options