NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

lexamx's avatar
lexamx
Aspirant
Jan 29, 2025

Can't connect to the VPN Server Nighthawk AX2700

Hi,

I setup VPN server but for some reasons I can't access it

➜ Library nc -zvu my_ddns.ddns.net 12973
Connection to my_ddns.ddns.net port 12973 [udp/*] succeeded!

My IP is correctly resolved.

It looks like the port 12973 is not opened.

I tried to add 192.168.0.1 to Port forwarding but it's not allowed to use router internal IP.

Could someone suggest please what could be a reason. It's just wating for the server response.

 

here is my config

```

client
remote my_ddns.ddns.net 12973
dev tun
proto udp
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
key-direction 1
tls-auth ta.key 1
remote-cert-tls server
cipher AES-256-CBC
verb 5
mute 5
comp-lzo
fast-io
route-delay 2

```

 

logs:

```

2025-01-29 16:01:32.199894 MANAGEMENT: >STATE:1738184492,RESOLVE,,,,,,
2025-01-29 16:01:32.266383 TCP/UDP: Preserving recently used remote address: [AF_INET]24.147.171.155:12973
2025-01-29 16:01:32.266477 Socket Buffers: R=[786896->786896] S=[9216->9216]
2025-01-29 16:01:32.266495 UDPv4 link local: (not bound)
2025-01-29 16:01:32.266510 UDPv4 link remote: [AF_INET]24.147.171.155:12973
2025-01-29 16:01:32.266547 MANAGEMENT: >STATE:1738184492,WAIT,,,,,,
2025-01-29 16:02:32.713570 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2025-01-29 16:02:32.713875 NOTE: --mute triggered...
2025-01-29 16:02:32.714972 1 variation(s) on previous 5 message(s) suppressed by --mute
2025-01-29 16:02:32.715019 SIGUSR1[soft,tls-error] received, process restarting
2025-01-29 16:02:32.715054 MANAGEMENT: >STATE:1738184552,RECONNECTING,tls-error,,,,,
2025-01-29 16:02:32.720409 MANAGEMENT: CMD 'hold release'
2025-01-29 16:02:32.721260 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2025-01-29 16:02:32.721721 MANAGEMENT: >STATE:1738184552,RESOLVE,,,,,,
2025-01-29 16:02:32.732800 TCP/UDP: Preserving recently used remote address: [AF_INET]24.147.171.155:12973
2025-01-29 16:02:32.733008 Socket Buffers: R=[786896->786896] S=[9216->9216]
2025-01-29 16:02:32.733028 UDPv4 link local: (not bound)
2025-01-29 16:02:32.733044 UDPv4 link remote: [AF_INET]24.147.171.155:12973
2025-01-29 16:02:32.733087 MANAGEMENT: >STATE:1738184552,WAIT,,,,,,
2025-01-29 16:02:32.733970 MANAGEMENT: CMD 'hold release'

```

 

7 Replies

  • Kitsap's avatar
    Kitsap
    Master
    Jan 29, 2025

    What device are you using to try to make connection and where is it connecting to the internet from?

     

    You cannot connect to a VPN server with a device that is connected to the same LAN where the server is running.

    The device has to be connecting to the internet at a remote location or via a cell connection.

    • lexamx's avatar
      lexamx
      Aspirant
      Jan 30, 2025

      Hello,
      I have NETGEAR Nighthawk Wifi Cable Modem Router Cable Gateway DOCSIS 3.1 AX2700.

      I tried to connect from my laptop using Tunnelblick from internal wifi and mobile hotspot.

      I also tried to connect from my iPhone (cell data) using the OpebVpn Connect app.

    • lexamx's avatar
      lexamx
      Aspirant
      Jan 30, 2025

      Hello Kitsap 

      here is a log from openVpn Connect app (Iphone 15 pro) using cell data

      ```

      [Jan 30, 2025, 09:33:44] START CONNECTION
      [Jan 30, 2025, 09:33:44] ----- OpenVPN Start -----
      OpenVPN core 3.10.5 ios arm64 64-bit
      [Jan 30, 2025, 09:33:44] OpenVPN core 3.10.5 ios arm64 64-bit
      [Jan 30, 2025, 09:33:44] Frame=512/2112/512 mssfix-ctrl=1250
      [Jan 30, 2025, 09:33:44] NOTE: This configuration contains options that were not used:
      [Jan 30, 2025, 09:33:44] Unsupported option (ignored)
      [Jan 30, 2025, 09:33:44] 0 [resolv-retry] [infinite]
      [Jan 30, 2025, 09:33:44] 1 [persist-key]
      [Jan 30, 2025, 09:33:44] 2 [persist-tun]
      [Jan 30, 2025, 09:33:44] 3 [mute] [5]
      [Jan 30, 2025, 09:33:44] EVENT: RESOLVE
      [Jan 30, 2025, 09:33:45] Contacting [2607:7700:0:34:0:1:1893:abad]:12973 via UDP
      [Jan 30, 2025, 09:33:45] EVENT: WAIT
      [Jan 30, 2025, 09:33:45] Connecting to [my_dddns.ddns.net]:12973 (2607:7700:0:34:0:1:1893:abad) via UDP
      [Jan 30, 2025, 09:33:54] Server poll timeout, trying next remote entry...
      [Jan 30, 2025, 09:33:54] EVENT: RECONNECTING
      [Jan 30, 2025, 09:33:54] Contacting my_dddns24.147.171.155:12973 via UDP
      [Jan 30, 2025, 09:33:54] EVENT: WAIT
      [Jan 30, 2025, 09:33:54] Connecting to [my_dddns.ddns.net]:12973 (my_dddns24.147.171.155) via UDP
      [Jan 30, 2025, 09:34:04] Server poll timeout, trying next remote entry...
      [Jan 30, 2025, 09:34:05] EVENT: RECONNECTING
      [Jan 30, 2025, 09:34:05] EVENT: RESOLVE
      [Jan 30, 2025, 09:34:05] Contacting [2607:7700:0:34:0:1:1893:abad]:12973 via UDP
      [Jan 30, 2025, 09:34:05] EVENT: WAIT
      [Jan 30, 2025, 09:34:05] Connecting to [my_dddns.ddns.net]:12973 (2607:7700:0:34:0:1:1893:abad) via UDP
      [Jan 30, 2025, 09:34:15] Server poll timeout, trying next remote entry...
      [Jan 30, 2025, 09:34:15] EVENT: RECONNECTING
      [Jan 30, 2025, 09:34:15] Contacting my_dddns24.147.171.155:12973 via UDP
      [Jan 30, 2025, 09:34:15] EVENT: WAIT
      [Jan 30, 2025, 09:34:15] Connecting to [my_dddns.ddns.net]:12973 (my_dddns24.147.171.155) via UDP
      [Jan 30, 2025, 09:34:25] Server poll timeout, trying next remote entry...
      [Jan 30, 2025, 09:34:25] EVENT: RECONNECTING
      [Jan 30, 2025, 09:34:25] EVENT: RESOLVE
      [Jan 30, 2025, 09:34:25] Contacting [2607:7700:0:34:0:1:1893:abad]:12973 via UDP
      [Jan 30, 2025, 09:34:25] EVENT: WAIT
      [Jan 30, 2025, 09:34:25] Connecting to [my_dddns.ddns.net]:12973 (2607:7700:0:34:0:1:1893:abad) via UDP
      [Jan 30, 2025, 09:34:35] Server poll timeout, trying next remote entry...
      [Jan 30, 2025, 09:34:35] EVENT: RECONNECTING
      [Jan 30, 2025, 09:34:35] Contacting my_dddns24.147.171.155:12973 via UDP
      [Jan 30, 2025, 09:34:35] EVENT: WAIT
      [Jan 30, 2025, 09:34:35] Connecting to [my_dddns.ddns.net]:12973 (my_dddns24.147.171.155) via UDP
      [Jan 30, 2025, 09:34:44] EVENT: CONNECTION_TIMEOUT [ERR]
      [Jan 30, 2025, 09:34:45] EVENT: DISCONNECTED
      [Jan 30, 2025, 09:34:45] EVENT: CORE_THREAD_DONE
      [Jan 30, 2025, 09:34:45] EVENT: DISCONNECT_PENDING
      [Jan 30, 2025, 09:34:45] Raw stats on disconnect:
      BYTES_OUT : 2520
      PACKETS_OUT : 60
      CONNECTION_TIMEOUT : 1
      N_RECONNECT : 5
      [Jan 30, 2025, 09:34:45] Performance stats on disconnect:
      CPU usage (microseconds): 86305
      Network bytes per CPU second: 29198
      Tunnel bytes per CPU second: 0

      ```

      • Kitsap's avatar
        Kitsap
        Master
        Jan 30, 2025

        I presume you have downloaded a new client.ovpn configuration file each time you have made changes to the configuration in the router and imported it into the mobile device?

         

        A UDP connection, like you are using, results in less overhead for the connection as opposed to a TCP connection.  You might try the TCP to see if it makes any difference.

         

        Today, anytime someone is using an iOS device and there are connection problems, I wonder about the rotating MAC address security feature.  Do you have yours enabled or disabled?

         

        Have you had the opportunity to test the VPN connection from a regular Wi-Fi connection as opposed to a cell connection?

         

        When you test from a cell connection, make sure the Wi-Fi connection in the mobile device is turned completely off as opposed to just disconnected.

         

        When I look at the log, resolving the IP address through your DDNS pops up as a repeating issue.

         

        All my Open VPN experience is with a variety of Windows 10 and 11 and Android devices.