I recently set up OpenVPN my ERL with v1.9 firmware.
Here is my OpenVPN setup:
openvpn vtun0 {
description OpenVPN
encryption aes256
hash sha256
mode server
openvpn-option "--push redirect-gateway"
openvpn-option "--push dhcp-option DNS 8.8.8.8"
openvpn-option "--push dhcp-option DNS 8.8.4.4"
openvpn-option --persist-tun
openvpn-option "--port 1194"
openvpn-option --tls-server
openvpn-option "--comp-lzo yes"
openvpn-option --persist-key
openvpn-option "--keepalive 10 120"
openvpn-option "--user nobody"
openvpn-option "--group nogroup"
protocol udp
server {
subnet 192.168.10.0/24
}
tls {
ca-cert-file /config/auth/cacert.pem
cert-file /config/auth/server.pem
dh-file /config/auth/dhp.pem
key-file /config/auth/server-pem.key
}
}
Here is my firewall rule allowing it through:
action accept
description OpenVPN
destination {
port 1194
}
log enable
protocol tcp_udp
state {
established enable
invalid disable
new enable
related enable
}
Here is my Windows 10 client config file:
client dev tun proto udp remote boulder.***.***.org 1194 cipher AES-256-CBC auth SHA256 resolv-retry infinite redirect-gateway def1 nobind comp-lzo yes persist-key persist-tun user nobody group nogroup verb 3 pkcs12 C:\\Windows\\boulder.p12
However, when I try to connect via the Windows 10 OpenVPN GUI client, it never actually connects. If I change it to TCP, it will attempt to connect, but end up timing out. With nmap, it shows 1194 on TCP and UDP being filtered, which doesn't make any sense because I have the firewall rule allowing new, established, and related connections. I'm not sure why it's not connecting.
What would cause it to fail to connect?