OVPN on CHR - 7.14

blingblouw2 · Fri Mar 08, 2024 1:02 pm

Hi.

Having a hard time setting up an OVPN server between two Mikrotik Routers.

CHR is the server (7.14)

/certificate add name=CA common-name=CA key-usage=tls-server,digital-signature,crl-sign,key-cert-sign,key-encipherment,data-encipherment,key-agreement
/certificate sign CA ca-crl-host=192.168.0.1
/certificate add name=server common-name=server
/certificate sign server ca=CA

/interface/ovpn-server/server> pr
                     enabled: yes
                        port: 443
                        mode: ip
                    protocol: tcp
                     netmask: 24
                 mac-address: <REMOVED>
                     max-mtu: 1500
           keepalive-timeout: 60
             default-profile: default
                 certificate: server
  require-client-certificate: no
                 tls-version: any
                        auth: sha1,md5,sha256,sha512
                      cipher: blowfish128,aes128-cbc
                   reneg-sec: 3600
            redirect-gateway: disabled
                 push-routes: 
             enable-tun-ipv6: no
             tun-server-ipv6: ::
             ipv6-prefix-len: 64

CCR as the clients.

When i try connect I get this in the server logs

11:01:25 ovpn,info connection established from <IP>, port: 34359 to <IP> 
11:01:25 ovpn,debug,packet sent P_CONTROL_HARD_RESET_SERVER_V2 kid=0 sid=cdbe6ff973e62c02 pid=0 DATA len=0 
11:01:25 ovpn,debug,packet rcvd P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 sid=dc764895195108d1 pid=0 DATA len=0 
11:01:25 ovpn,debug,packet sent P_ACK kid=0 sid=cdbe6ff973e62c02 [0 sid=dc764895195108d1] DATA len=0 
11:01:25 ovpn,info <105.242.232.80>: disconnected <TLS error: couldn't load store (6)>

So kind of stumped.. What does "couldn't load store" mean?

pdr · Sun Mar 24, 2024 9:34 pm

Hey,

Any luck with this, I'm seeing the same thing on CHR...

OVPN on CHR - 7.14

OVPN on CHR - 7.14

Re: OVPN on CHR - 7.14

Who is online