I tried again and get similar output:
Code:
2026-02-08 13:38:58 DEPRECATED OPTION: --cipher set to 'AES-128-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305). OpenVPN ignores --cipher for cipher negotiations. 2026-02-08 13:38:58 Note: Kernel support for ovpn-dco missing, disabling data channel offload.2026-02-08 13:38:58 OpenVPN 2.6.14 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]2026-02-08 13:38:58 library versions: OpenSSL 3.5.4 30 Sep 2025, LZO 2.102026-02-08 13:38:58 DCO version: N/A2026-02-08 13:38:58 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.2026-02-08 13:38:58 TCP/UDP: Preserving recently used remote address: [AF_INET]58.188.132.40:17792026-02-08 13:38:58 Socket Buffers: R=[131072->131072] S=[16384->16384]2026-02-08 13:38:58 Attempting to establish TCP connection with [AF_INET]58.188.132.40:17792026-02-08 13:38:59 TCP connection established with [AF_INET]58.188.132.40:17792026-02-08 13:38:59 TCPv4_CLIENT link local: (not bound)2026-02-08 13:38:59 TCPv4_CLIENT link remote: [AF_INET]58.188.132.40:17792026-02-08 13:38:59 TLS: Initial packet from [AF_INET]58.188.132.40:1779, sid=9d8b946a 3e9650132026-02-08 13:38:59 VERIFY OK: depth=2, C=US, O=Internet Security Research Group, CN=ISRG Root X12026-02-08 13:38:59 VERIFY OK: depth=1, C=US, O=Let's Encrypt, CN=R122026-02-08 13:38:59 VERIFY OK: depth=0, CN=opengw.net2026-02-08 13:39:00 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, peer certificate: 2048 bits RSA, signature: RSA-SHA256, peer temporary key: 253 bits X255192026-02-08 13:39:00 [opengw.net] Peer Connection Initiated with [AF_INET]58.188.132.40:17792026-02-08 13:39:00 TLS: move_session: dest=TM_ACTIVE src=TM_INITIAL reinit_src=12026-02-08 13:39:00 TLS: tls_multi_process: initial untrusted session promoted to trusted2026-02-08 13:39:01 SENT CONTROL [opengw.net]: 'PUSH_REQUEST' (status=1)2026-02-08 13:39:02 PUSH: Received control message: 'PUSH_REPLY,ping 3,ping-restart 10,ifconfig 10.211.1.105 10.211.1.106,dhcp-option DNS 10.211.254.254,dhcp-option DNS 8.8.8.8,route-gateway 10.211.1.106,redirect-gateway def1'2026-02-08 13:39:02 OPTIONS IMPORT: --ifconfig/up options modified2026-02-08 13:39:02 OPTIONS IMPORT: route options modified2026-02-08 13:39:02 OPTIONS IMPORT: route-related options modified2026-02-08 13:39:02 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified2026-02-08 13:39:02 OPTIONS ERROR: failed to negotiate cipher with server. Add the server's cipher ('AES-128-CBC') to --data-ciphers (currently 'AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305') if you want to connect to this server.2026-02-08 13:39:02 ERROR: Failed to apply push options2026-02-08 13:39:02 Failed to open tun/tap interface2026-02-08 13:39:02 SIGUSR1[soft,process-push-msg-failed] received, process restarting2026-02-08 13:39:02 Restart pause, 1 second(s)I tried adding
Code:
AES-128-CBCto a client.conf file in
Code:
/etc/openvpnand
Code:
/etc/openvpn/clientby taking the example conf file, copying it, and removing
Code:
;from infront of the data-ciphers line... I still get the same message.
The VM is a LMDE7 machine. I still have to run my LM 20.3 VM as I can't get OpenVPN to work on any other machine (and the Mint machine has the setup from when I did it years ago).
Statistics: Posted by MCD — 2026-02-08 14:10