I CAN'T CONNECT TO THE VPN
First, please ensure that you have Internet connectivity within your Kali Linux virtual machine. For basic network configuration on Kali, you can refer to the Kali documentation site at: http://docs.kali.org
If you do have Internet connectivity and are still unable to connect to the labs, ensure you are not behind any firewalls that are preventing you from establishing an outbound connection to the labs on UDP port 1194.
I RECEIVE AN AUTH FAILED MESSAGE TRYING TO CONNECT
This error is most commonly due to using the incorrect VPN connectivity pack. Please ensure you download and use the connectivity package from the link provided in the most recent email received from us. Also, please note that your username is case-sensitive, so os-xxxxx is not the same as OS-xxxxx.
MY VPN CONNECTION KEEPS DISCONNECTING
If your connection is continuously dropping or restarting, it more than likely means that the connection is active on more than one computer or location. You can only have one active connection to the VPN at a time. The solution is to stop all OpenVPN sessions to the Lab VPN. You can do this by either:
- Restarting the machine that is connecting to the VPN.
- Running the following command:
killall -w openvpn
I GET 'TLS KEY NEGOTIATION FAILED TO OCCUR' ERRORS
This is primarily a symptom of having multiple connections to the VPN at once (either from the same machine or multiple), or if your Internet connection isn't stable and you reconnected too fast. Note that the VPN uses UDP, not TCP. An example of the error message displayed from the OpenVPN window can be seen below.
Tue Apr 1 15:05:02 2014 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Tue Apr 1 15:05:02 2014 TLS Error: TLS handshake failed
The solution is to stop all OpenVPN sessions to the Lab VPN. You can do this by either:
- Restarting the machine that is connecting to the VPN.
- Running the following command:
killall -w openvpn
Closing the OpenVPN window isn't enough.
Afterwards, you need to wait 10 minutes before trying to reconnect. If you try to reconnect before this time is up, you may end up re-banning yourself (and having to wait a further 10 minutes). Additionally, please make sure you have Internet access on the machine and there isn't a local firewall blocking your traffic on UDP 1194. The last thing that you should check is to make sure the clock is set to the correct time & date before trying to connect.
I CAN'T REMOTE DESKTOP TO MY PERSONAL CLIENTS OR REACH THE CONTROL PANEL
Try lowering your MTU rate. This can be accomplished by issuing the following command (where tap0 is your VPN interface that is connected to the labs):
ifconfig tap0 mtu 1250
Continue lowering the MTU value in increments of 50 until you find that your remote desktop/control panel connection is working properly or the value is lower than 700.
GENERAL VPN TIPS
We have compiled the following recommendations that will hopefully be of assistance to you:
- Make sure the system time in your virtual machine is properly set.
- Try changing the networking of your virtual machine from NAT to Bridged (or vice versa).
- Use a wired connection to connect to your network rather than wireless.
- Make sure you are connecting via a stable ISP connection and not mobile Internet (such as 3G/4G).
- Do not use a VPN to connect to our VPN labs.
- Ensure that you are connecting from a network that does not have any load balancing or proxying in place.
- Do not make any modifications to the VPN configuration file unless directed by our admins.
If you are still experiencing disconnects from the VPN, please run the troubleshooting.sh script included in the VPN connectivity pack and provide us with the full output along with the output from the openvpn connection attempt. In addition, please let us know what commands you were running at the time you got disconnected as it may help us further narrow down the issue.