VPN Trouble shooting

1. Create a ticket specifying the problem details.

2. Change the Status of the ticket to Inprogress.

3. Is the User connected to Internet before connection to OpenVPN. If not ask the user to connect to Internet and check if he is able to ping the server. If he is unable to ping to the server ask the user to rectify the Internet problems and then try connection to openvpn.

4. Is the User able to connect to VPN. If yes check if the applications are working fine and if yes verify that the problem is fixed.

5. If the user is unable to connect to OpenVPN check the configuration file on the client. are the settings according to the checklist.
• --cipher
• --auth
• --keysize
• --dev tun|tap [unit number need not match]
• --dev-type tun|tap
• --link-mtu
• --udp-mtu
• --tun-mtu
• --no-replay
• --no-iv
• --comp-lzo
• --fragment
• --tun-ipv6
• --tls-auth
• --secret
• --key-method
• --tls-client [matched with --tls-server on the other end of the connection]
• --tls-server [matched with --tls-client on the other end of the connection]
• --ifconfig x y [matched with --ifconfig y x on the other end of the connection]
• --proto udp
• --proto tcp-client [matched with --proto tcp-server on the other end of the connection]
• --proto tcp-server [matched with --proto tcp-client on the other end of the connection]

6. If the configuration file is proper check if the path given for Key is correct. on Windows client the path should be like this "c:\\openvpn\\keys."

7. Check if OpenVPN client is not being run from a non privilidged Windows Account. This is because Windows does not provide a WHQL-approved method to allow the TAP-Win32 driver to make its virtual device node accessible from a non-admin account. Also OpenVPN needs the ability to add routes to the system routing table. This requires admin privileges.

8. Check if the Win32-Tap Adapter is enabled. for this go to Network Connections and find a Adapter named Win32-Tap adapter check if it is enabled or not. if it is disabled enable it.

9. Check if DHCP Service is enabled on the client. for this Go to Control Panel > Administrative Tools > Services. THere search for the service named Dhcp Client if the service is disabled enable the service.

10. Check if the WIn32-tap Adapter is not configured for static IP Address.

11. Check if the Win32-tap adapter is not firewalled.

12. Check if the the windows firewall is blocking access for the openvpn.exe binary. You may need to whitelist (add it to the "Exceptions" list) it for OpenVPN to work.

13. If this dosent solve the problem escalate the problem.