OpenVPN TLS Shake Error on IP Change. Advise Please

Dennis

5/7/23, 5:16 AM

I'll try to be concise.

My Linux Debian VPS host changed IP addresses. This is how they did it. Quote, "we simply changed the IP for your VPS container. On reboot, the OS you have running in your container (Linux) sees the new IP and takes it as its own." Unquote

I thought there was nothing to worry about as all the other services moved easily, SSH and everything else works fine when I connect via both IP addresses (old IP and new IP).

However, openVPN is having the TLS shake error as follows:

TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity).

I changed to the new IP address in my client config of course. I also tried re-issuing my self-signed CA and regular certificates on their new IP address but it didn't help. I totally flushed all my iptable rules / firewalls but it did not help either. I am completely lost.

What do I need to do to fix this error? I would be really grateful for any comments / advices / assistance. Much appreciated in advance!

0 + 0

openvpn

linux-networking

djdomi

5/7/23, 7:36 AM

my openvpn does not have any ips inside its certificate? are you sure you did it correctly?

Dennis

5/7/23, 7:51 AM

Yes, I am sure. Because it is working on their old IP address. Certificates do not have any IP addresses, client configs do.

djdomi

5/7/23, 7:55 AM

i could move my configuration around my servers and it always accepts me. either the ip has an issue or the server... but without the logs nothing will be done ;) but is this question business related?

Dennis

5/7/23, 10:23 AM

Yes, that's correct, it should always accept it. No, it's not business related. My guess is that it's not openVPN, the issue is with their network. It's clearly seen from the Error. I am not sure though. The logs only have the error mentioned in my question.

djdomi

5/7/23, 1:18 PM

and your configuration is a secret also? ;)

Score:0

Server

Dennis

5/8/23, 7:44 PM

It had nothing to do with openVPN. They confirmed there was a problem with their network. It is exactly as it says in my initial post. "check your network connectivity".

0 + 0

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: OpenVPN TLS Shake Error on IP Change. Advise Please

TH: ข้อผิดพลาด OpenVPN TLS Shake เมื่อเปลี่ยน IP กรุณาแนะนำ

RO: Eroare de agitare TLS OpenVPN la schimbarea IP. Sfatu va rog

RU: Ошибка OpenVPN TLS Shake при смене IP. Посоветуйте пожалуйста

VI: OpenVPN TLS Shake Error khi thay đổi IP. tư vấn xin vui lòng

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.