SSL Connection failure: Operation timed out

[Hamedzargar]

Hi thanks for your one click script have to say I'm in Iran. I've done all as you said. and everything looks good. ocserv running with no error. certificate is showing 89 days remaining and.. the problem is when i want to connect via server B or A (doesn't make difference,same logs), it sticks in ssl negotiation and shows up: ssl connection failure as below Server with ocserv: Germany (pinging normal from my country) and Server A is pinging normal too connected to [server a or b ip + selected port] ssl negotiation with [ip] ssl connection failure. the operation timed out failed to open https connection to [ip]

Update: I tested it's working with no problem on some ISPs But on my office Internet ISP (Irancell) it's being blocked in ssl negotiation. Any Idea?

[B-andi-T]

Hello dear Unfortunately, Ocserv is heavily blocked in Iran, and in more than 90% of ISPs, you have to use ssh tunnel to connect to it. But according to reports, Irancell has limited access to VPN servers through ssh tunnel in some areas of Iran. If there is no connection problem with other ISPs, this could be the reason. But if your problem is the same in all ISPs, it is likely that the problem is with the kernel. If you are using Ubuntu 18, you can upgrade it to 20.04 and test again.

[Hamedzargar]

Writing after a month, after testing most of data centers in Iran, Seems that these limitation is applied to domestic servers. So if someone had same problem and seeking for an answer, i suggest testing from different domestic machines or using Stunnel instead of ssh tunnel.