# configuration files (see man page for more info). # use the subdirectory "ccd" for client-specific # subnet behind it that should also have VPN access, # clients or if a connecting client has a private # To assign specific IP addresses to specific # Windows), where the client-side TAP adapter is # Note: this mode only works on clients (such as # interface with the ethernet NIC interface. # your OS's bridging capability to bridge the TAP # Configure server mode for ethernet bridging # must set aside an IP range in this subnet # IP/netmask on the bridge interface, here we # to bridge the TAP interface with the ethernet # You must first use your OS's bridging capability # Configure server mode for ethernet bridging. # the same virtual IP address from the pool that was # is restarted, reconnecting clients can be assigned # Maintain a record of client virtual IP address # Each client will be able to reach the server # the rest will be made available to clients. # The server will take 10.8.0.1 for itself, # for OpenVPN to draw client addresses from. # Configure server mode and supply a VPN subnet Key server.key # This file should be kept secret # OpenVPN can also use a PKCS #12 formatted key file # Any X509 key management system can be used. # of scripts for generating RSA certificates
# See the "easy-rsa" directory for a series # and the server must have their own cert and # SSL/TLS root certificate (ca), certificate # Non-Windows systems usually don't need this. # you may need to selectively disable the # from the Network Connections panel if you
# Windows needs the TAP-Win32 adapter name # the firewall for the TUN/TAP interface. # On most systems, the VPN will not function # and bridged it with your ethernet interface. # and have precreated a tap0 virtual interface # Use "dev tap0" if you are ethernet bridging # "dev tap" will create an ethernet tunnel. # "dev tun" will create a routed IP tunnel, # on the same machine, use a different port # If you want to run multiple OpenVPN instances # Which TCP/UDP port should OpenVPN listen on? # Comments are preceded with '#' or ' ' # # "C:\\Program Files\\OpenVPN\\config\\foo.key" # # configurations (See the Examples page # Thanks.Ĭonfigs follow (personal details removed) If anyone can point me in the right direction I’d sure appreciate it. I can’t figure out where it’s going wrong. The steps seem pretty straight forward, but maybe I’m goofing it up somewhere. The person who had this problem in the other post just started over and it problem was resolved somehow, but I’ve gone over the steps maybe a dozen times and still no luck. 16:38:54 SIGUSR1 received, process restarting 16:38:54 TLS Error: TLS handshake failed 16:38:54 TLS Error: TLS object -> incoming plaintext read error 16:38:54 TLS_ERROR: BIO read tls_read_plaintext error
I tried connecting to my OpenVPN server using Tunnelblick 3.7.1a (build 4812) on my Mac OS 10.11.6, but I keep getting this error in the Tunnleblick log: 16:38:54 VERIFY ERROR: depth=1, error=self signed certificate in certificate chain: C=US, ST=CA, L=SanFrancisco, O=Fort-Funston, OU=MyOrganizationalUnit, CN=Fort-Funston CA, name=server, 16:38:54 OpenSSL: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed I’ve set up an OpenVPN server going by the excellent tutorial here.
That problem was resolved for the poster, but without explanation. I have pretty much the same problem described in this post.