Examice

Exam CAS-004 All QuestionsBrowse all questions from this exam

Go to Exam

Question 485

The following messages are displayed when a VPN client is attempting to connect to an OpenVPN server:

OpenSSL: error: 140760FC:SSL routines: SSL23_GET_CLIENT_HELLO: unknown protocol'

TLS_ERROR: BIO read tls_read_plaintext error'

TLS_ERROR: TLS object->incoming plaintext read error'

TLS_ERROR: TLS handshake failed'

SIGUSR1 [soft, tls_error] received, client_instance restarting'

Which of the following best explains the cause of these messages?

The client is attempting to establish an unencrypted connection with the server.

The server is unreachable to the client and a connection cannot be established.

The client is using LibreSSL libraries while the server is using OpenSSL libraries.

A TLS version mismatch exists between the client and the server.

Correct Answer: D

The error messages indicate a problem during the TLS handshake process, which is a key part of establishing a secure connection in VPNs. A common cause of such errors is a TLS version mismatch between the client and the server. If the client and server are using different versions of the TLS protocol that are not compatible with each other, it will lead to handshake failures, as seen in the provided error messages. Ensuring that both the client and server are configured to use compatible TLS versions would likely resolve the issue.

Discussion

isaphiltrickOption: D

The TLS handshake errors indicate a TLS version mismatch between the VPN client and the OpenVPN server. Ensuring that both client and server configurations are aligned with compatible TLS versions and configurations is essential to resolving these errors and establishing a successful VPN connection.