Having got this working, I now want to connect from outside the LAN. I made the 'remote' parameter in my client.conf file my external IP address (i.e. the one I get by googling "My IP address") and forwarded port 1194 to my pi's IP address.
I've got a Huawei 533 router, and my ISP is TalkTalk (I don't know if that's relevant). In the parameters for the port forwarding, I input the following settings:
Interface: nas_0_38 (I could either choose this or ttyUSB)
External start port: 1194
External end port: 1194
Internal host: [Pi's local IP address]
Internal port: 1194
Mapping name: openvpn.
I followed the guide on http://www.portforward.com.
Upon trying to connect with the new configuration, i.e. via the external IP address, the connection attempt failed. I do wonder if it's because I'm trying to do it from on the same LAN as the server, but that seems unlikely to me.
Here is the error message:
After a bit of Googling, I tested to see if port 1194 on my external IP address was open (with the server running). It wasn't. Some websites I've seen seem to indicate that my firewall was blocking it.
Code: Select all
Fri Aug 21 00:42:47 2015 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) Fri Aug 21 00:42:47 2015 TLS Error: TLS handshake failed Fri Aug 21 00:42:47 2015 SIGUSR1[soft,tls-error] received, process restarting Fri Aug 21 00:42:47 2015 Restart pause, 2 second(s)
I'm reluctant to mess around with my firewall, at least without help, mainly because I don't know what I'm doing and I don't know how important a firewall actually is.
My questions are basically:
1) Is the reason I can't connect because port 1194 is closed?
2) Is there a way to open it without messing around with the firewall?
3) If not, in what way do I need to change the firewall and how can I do it safely?
Thanks for helping a complete noob with networking!