中文 
deepin 可以查看下日志, 我之前也有连接openvpn不成功的情况, 后来查看日志发现是因为关闭sha1加密算法(可能sha1已经被淘汰有关),
具体查看日志
sudo journalctl -u NetworkManager -f
-- Logs begin at Mon 2020-10-05 14:42:41 CST. -- 10月 11 08:04:04 deep nm-openvpn[14581]: TCP_CLIENT link remote: [AF_INET]229.134.217.19:1194 10月 11 08:04:04 deep nm-openvpn[14581]: NOTE: chroot will be delayed because of --client, --pull, or --up-delay 10月 11 08:04:04 deep nm-openvpn[14581]: NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay 10月 11 08:04:04 deep nm-openvpn[14581]: TLS error: Unsupported protocol. This typically indicates that client and server have no common TLS version enabled. This can be caused by mismatched tls-version-min and tls-version-max options on client and server. If your OpenVPN client is between v2.3.6 and v2.3.2 try adding tls-version-min 1.0 to the client configuration to use TLS 1.0+ instead of TLS 1.0 only 10月 11 08:04:04 deep nm-openvpn[14581]: OpenSSL: error:1425F102:SSL routines:ssl_choose_client_version:unsupported protocol 10月 11 08:04:04 deep nm-openvpn[14581]: TLS_ERROR: BIO read tls_read_plaintext error 10月 11 08:04:04 deep nm-openvpn[14581]: TLS Error: TLS object -> incoming plaintext read error 10月 11 08:04:04 deep nm-openvpn[14581]: TLS Error: TLS handshake failed 10月 11 08:04:04 deep nm-openvpn[14581]: Fatal TLS error (check_tls_errors_co), restarting 10月 11 08:04:04 deep nm-openvpn[14581]: SIGUSR1[soft,tls-error] received, process restarting 10月 11 08:04:09 deep nm-openvpn[14581]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
分析 openvpn使用openssl的客户端和服务器端版本不一致
-
解决方案 更改 本地openssl最低支持版本为1.0 sudo vim /etc/ssl/openssl.cnf MinProtocol = TLSv1.0
Error al actualizar Deepin 25.1 – April 20, 2026 
结果就是vpn连不上!!!