2개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
1
It would be good, if you could have posted the actuall error. I assume that you might have mutual authentication . Please refer to the below articles for troubleshooting.
https://docs.aws.amazon.com/vpn/latest/clientvpn-admin/troubleshooting.html
https://docs.aws.amazon.com/vpn/latest/clientvpn-user/common-troubleshooting.html
If you still face issues, please post with more logs .
답변함 일 년 전
1
The culprit is the client certificate revocation list (crl), which expired on 30 Nov 2022. The resolution is to generate a new crl and upload to the client vpn endpoint.
답변함 일 년 전
I had the same issue, and solved it based on @blacktulip11's comment. You can check crl expiration via:
openssl crl -in file.crl -text
관련 콘텐츠
AWS 공식업데이트됨 2년 전- AWS 공식업데이트됨 2년 전
- AWS 공식업데이트됨 8달 전
Here's the snippet of the OpenVPN Connect log. Seems the DNS server was resolved but the ssl handshake failed.
Connecting to [ascfd.cvpn-endpoint-xxxxxxxxxxxx.prod.clientvpn.ap-southeast-1.amazonaws.com]:443 (xx.xxx.xxx.xxx) via UDPv4 EVENT: CONNECTING Tunnel Options:V4,dev-type tun,link-mtu 1521,tun-mtu 1500,proto UDPv4,cipher AES-256-GCM,auth [null-digest],keysize 256,key-method 2,tls-client ... Session invalidated: KEEPALIVE_TIMEOUT Client terminated, restarting in..
I re-created a new server certificate and a few client certificates. Still doesn't work.
Im facing a similar issue, everything worked great, no changes were made at all, I can connect but now nothing resolves. I cannot get online or hit internal resources.