NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Can't connect to VPN Service
I'm trying to set up a local VPN on my new RAX50 router, but I can't seem to connect to it. I've enabled the VPN Service from the router settings, installed OpenVPN to the client computer I want to connect to the VPN with, downloaded the configuration files from the host computer, sent them to the client computer, and put them in the C:\Program Files\OpenVPN\config folder. (I know I should set up a DDNS server so I don't have to download new config files whenever my IP Address changes, but I want to get the VPN working without one first.) When I open OpenVPN, it gets stuck at MANAGEMENT: >STATE:1690405121.WAIT for 60 seconds before giving the error message TLS Error: key negotiation failed to occur within 60 seconds. Both the host and client computers are connected to the internet. From all of the guides I've seen, I have done everything exactly as I should have. Is there something I'm missing?
I see. I figured there would be some sort of problem with connecting to the local VPN while already connected to the VPN, I just couldn't think of any other solution. However, I forgot I had the ability to use USB tethering with my phone to connect to the internet on a computer. As far as I know, there shouldn't be any issues in doing that.
To answer your question about Mullvad, it was running on the laptop I was using to connect to the local VPN.
While connected to the mobile hotspot I was able to connect to the VPN successfully, both with and without the DDNS server. I made sure I had WiFi turned off just to be sure I'm not accidentally connected to my local network that way. I'm not sure why I wasn't able to connect while in a different network before, maybe it has something to do with it being a university network?
I won't have an opportunity to physically move to another network until early next week, but as soon as I can I'll test this again at a public library. I'll reach back out if I can't connect to the local VPN there, if I can then I'll set this post as the solution. If I end up doing that, then the solution was that connecting to the local VPN while still connected to your local network will always fail.
9 Replies
gmgrey wrote:I'm trying to set up a local VPN on my new RAX50 router, but I can't seem to connect to it. I've enabled the VPN Service from the router settings, installed OpenVPN to the client computer I want to connect to the VPN with, downloaded the configuration files from the host computer, sent them to the client computer, and put them in the C:\Program Files\OpenVPN\config folder. (I know I should set up a DDNS server so I don't have to download new config files whenever my IP Address changes, but I want to get the VPN working without one first.) When I open OpenVPN, it gets stuck at MANAGEMENT: >STATE:1690405121.WAIT for 60 seconds before giving the error message TLS Error: key negotiation failed to occur within 60 seconds. Both the host and client computers are connected to the internet. From all of the guides I've seen, I have done everything exactly as I should have. Is there something I'm missing?
Once you have installed the Open VPN client software on a test computer, you cannot test the connection with the computer connected to the internet via the router where you have the VPN server enabled. You must go to a friend’s house, restaurant, etc.
On the test computer where you installed the Open VPN client software, make sure you renamed the local area connection to NETGEAR-VPN.
To get started, In the router configuration, set the TUN mode and TAP mode service type to TCP. Also set the VPN connection to access all sites on the Internet & Home Network.
Any time you make a change to the router configuration, you must generate a new set of configuration files for the client computer.
You should be OK with your decision on the DDNS until you are happy with the configuration.
I see, probably should have figured it wouldn't work if I was already connected to my local network.
I went to a different network and tried to connect to the local VPN there, and this time I got different results. First, it got stuck at MANAGEMENT: >STATE:1690477355,TCP_CONNECT for over a minute, and then it would say that it couldn't connect due to an unknown error. I did make sure the local area connection labelled TAP-Windows Adapter was renamed to NETGEAR-VPN, and I also changed the VPN settings as you suggested before trying to connect and then generated the configuration files that I used to try to connect. I even set up a DDNS server previously and set my PC to update the IP address, and while I was connected to the external network I edited client1.ovpn and changed the IP address in the line that stars with "remote" to the URL of the DDNS server and got the same result when I tried connecting.
This might be unrelated, but I'm also having issues with the router's Wifi. The router settings say it's been turned off, and when I go to turn it on it says I have to press the Wifi On/Off button on the router. I do that, and it still won't broadcast the SSIDs and now I can't connect to the router settings anymore, either through routerlogin.net or 192.168.1.1, until I restart the router. The only thing I changed is the VPN settings.
gmgrey wrote:I see, probably should have figured it wouldn't work if I was already connected to my local network.
I went to a different network and tried to connect to the local VPN there, and this time I got different results. First, it got stuck at MANAGEMENT: >STATE:1690477355,TCP_CONNECT for over a minute, and then it would say that it couldn't connect due to an unknown error. I did make sure the local area connection labelled TAP-Windows Adapter was renamed to NETGEAR-VPN, and I also changed the VPN settings as you suggested before trying to connect and then generated the configuration files that I used to try to connect. I even set up a DDNS server previously and set my PC to update the IP address, and while I was connected to the external network I edited client1.ovpn and changed the IP address in the line that stars with "remote" to the URL of the DDNS server and got the same result when I tried connecting.
This might be unrelated, but I'm also having issues with the router's Wifi. The router settings say it's been turned off, and when I go to turn it on it says I have to press the Wifi On/Off button on the router. I do that, and it still won't broadcast the SSIDs and now I can't connect to the router settings anymore, either through routerlogin.net or 192.168.1.1, until I restart the router. The only thing I changed is the VPN settings.
What is the brand name and model number of the modem/ONT that is connected between your router and the internet?
In general, editing of the VPN configuration files generated by your router is not required for them to establish a connection.
Issues with your being able to connect to the router's Wi-Fi or to your router through Ethernet are not related to your VPN configuration. My first question in this post is critical to your being able to access the router.
Issues relating to your manual Wi-Fi on/off switch and the SSID broadcast need to resolved first. A pull the power cord restart is a good beginning.
