iOS phone on T-Mobile plan in the USA. No longer working on Mobile networks since a change, either to T-Mobile or with the recent OpenVPN Connect iOS update.
iOS 17.1
iPhone 14 Pro
Outer error on client
Code: Select all
Error: remote_list_error: Current remote server endpoint is undefined
Now the iOS phone connecting while only on T-Mobile Network is throwing an inner error as seen below (on wi-fi IPv4 it works fine). I have IPv6 disabled inbound to my network 100%.
Code: Select all
Endpoint address family (IPv6) is incompatible with transport protocol (udp4)
here is the client config - this was working for years:
client
Code: Select all
dev tun
proto udp4
remote SCRUBBED_IP SCRUBBED_PORT
redirect-gateway def1
dhcp-option DNS 208.67.222.222
remote-cert-tls server
tls-version-min 1.2
auth SHA512
cipher AES-256-GCM
nobind
float
key-direction 1
<ca>
-----BEGIN CERTIFICATE-----
RUBBED
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
SCRUBBED
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN ENCRYPTED PRIVATE KEY-----
SCRUBBED
-----END ENCRYPTED PRIVATE KEY-----
</key>
<tls-auth>
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
SCRUBBED
-----END OpenVPN Static key V1-----
</tls-auth>
Code: Select all
local SCRUBBED_IP
port SCRUBBED_PORT
proto udp4
push tun-ipv4
dev tun
mssfix 1400
tun-mtu 1400
replay-window 64 30
ca SCRUBBED.crt
cert SCRUBBED.crt
key SCRUBBED.key
crl-verify SCRUBBED.pem
dh SCRUBBED.pem
server SCRUBBED_IP SCRUBBED_NETMASK
ifconfig-pool-persist SCRUBBED.txt
push "redirect-gateway def1"
push "dhcp-option DNS 208.67.222.222"
keepalive 10 120
tls-auth SCRUBBED.key 0
chroot jail
auth-nocache
prng blake2b512 64
askpass SCRUBBED
cipher AES-256-GCM
tls-version-min 1.2
auth SHA512
tls-server
key-direction 0
max-clients 10
user SCRUBBED
group SCRUBBED
persist-key
persist-tun
status SCRUBBED.log
log SCRUBBED.log
verb 6
remote-cert-eku "TLS Web Client Authentication"