OVPN Client not connecting - SIGUSR1

Ryzz · May 1, 2020, 9:04am

Hi All,

Im struggling to figure out what im missing here. Im trying to setup an OVPN server on my RB4011, however i just cant get the client im testing with (Win10) to connect.
Also no matter what i dont, i cant see any logging for ovpn, im assuming this means its not reaching the OVPN service? I have a static IP from my isp + an additional 3 addresses. Im using the default static IP to connect externally, not sure if this is right??

Logs and configs below, thanks!

OpenVPN Client Logs

Fri May 01 16:07:43 2020 TCP/UDP: Preserving recently used remote address: [AF_INET]x.x.x.x:1194
Fri May 01 16:07:43 2020 Attempting to establish TCP connection with [AF_INET]x.x.x.x:1194 [nonblock]
Fri May 01 16:08:21 2020 SIGHUP[hard,init_instance] received, process restarting
Fri May 01 16:08:21 2020 OpenVPN 2.4.3 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Jul 14 2017
Fri May 01 16:08:21 2020 Windows version 6.2 (Windows 8 or greater) 64bit
Fri May 01 16:08:21 2020 library versions: OpenSSL 1.0.2l 25 May 2017, LZO 2.10
Fri May 01 16:08:26 2020 TCP/UDP: Preserving recently used remote address: [AF_INET]x.x.x.x:1194
Fri May 01 16:08:26 2020 Attempting to establish TCP connection with [AF_INET]x.x.x.x:1194 [nonblock]
Fri May 01 16:08:27 2020 TCP connection established with [AF_INET]x.x.x.x:1194
Fri May 01 16:08:27 2020 TCP_CLIENT link local: (not bound)
Fri May 01 16:08:27 2020 TCP_CLIENT link remote: [AF_INET]x.x.x.x:1194
Fri May 01 16:08:37 2020 SIGTERM[hard,] received, process exiting

OpenVPN Client Conifg

dev tun
persist-tun
persist-key
cipher AES-256-CBC
auth SHA1
tls-client
client
resolv-retry infinite
ca Mikrotik_CA.crt
cert MIkrotik_OpenVPN_Client.crt
key MIkrotik_OpenVPN_Client.key
remote x.x.x.x
proto tcp-client
port 1194
remote-cert-tls server
auth-user-pass Mikrotik_Secret
auth-nocache

MIkrotik FW Rule

add action=accept chain=input comment=“Mikrotik Openvpn TCP/1194” dst-port=1194 protocol=tcp; > N.b: I’ve tried chain=forward as well

PPP Setup

/ppp profile
add dns-server=192.168.100.5,192.168.100.13 local-address=172.16.1.1 name=OVPN remote-address=vpn-pool use-encryption=required
/ppp secret
add name=xxx password=xxx profile=OVPN service=ovpn

Interace ovpn-server server

/interface ovpn-server server
set certificate=“VPN Server” cipher=aes256 default-profile=OVPN enabled=yes require-client-certificate=yes

IP Pools

/ip pool
add name=vpn-pool ranges=172.16.1.2-172.16.1.254