I tried 3 different VPN providers, one of them - my own OpenVPN Access Server on my hosting.
So, I think the problem is not in VPN provider but in my setup.
I have made all the setup steps twice with the same result
I double checked all resulting configuration files.
Workstation connects to VPN server via TCP , but it fails to handshake with VPN server.
Maybe somebody knows how to debug VPN communications on low level to understand what is going wrong?
Here is what āsudo service openvpn@openvpn statusā says:
VPN status error after minute of handshaking -
Jul 17 21:03:00 host ovpn-openvpn[1542]: TCPv4_CLIENT link remote: [AF_INET]126.25.194.75:1712
Jul 17 21:04:00 host ovpn-openvpn[1542]: TLS Error: TLS key negotiation failed to occur within 60 secondsā¦vity)
Jul 17 21:04:00 host ovpn-openvpn[1542]: TLS Error: TLS handshake failed
Jul 17 21:04:00 host ovpn-openvpn[1542]: Fatal TLS error (check_tls_errors_co), restarting
And after some time is says -
Jul 17 23:02:13 host ovpn-openvpn[10720]: TCP connection established with [AF_INET]126.25.194.75:1712
Jul 17 23:02:13 host ovpn-openvpn[10720]: TCPv4_CLIENT link local: [undef]
Jul 17 23:02:13 host ovpn-openvpn[10720]: TCPv4_CLIENT link remote: [AF_INET]126.25.194.75:1712
Jul 17 23:02:16 host ovpn-openvpn[10720]: TLS_ERROR: BIO read tls_read_plaintext error: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed
Jul 17 23:02:16 host ovpn-openvpn[10720]: TLS Error: TLS object -> incoming plaintext read error
Jul 17 23:02:16 host ovpn-openvpn[10720]: TLS Error: TLS handshake failed
Jul 17 23:02:16 host ovpn-openvpn[10720]: Fatal TLS error (check_tls_errors_co), restarting