need help

[thebadboy]

Hello,
First of all excuse my language this is a google translation.
Since the update 1.2.5-1.2.6, my connection to my server is no longer working.

With version 1.1.1 all worked normally

My iphone X connects to my server but the connection is lost after 1 minute.


Sire indulgent with me I do not have much knowledge.

here is how to configure my vpn server (router asus rt-ac66u).


I test several parameter but it does not change anything.

please help me.


[imghttps://screenshot.net/fr/3nl2za4][/img]








2018-01-19 10:18:32 VERIFY OK : depth=0

cert. version : 3

serial number : 01

issuer name : C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC66U, emailAddress=me@myhost.mydomain

subject name : C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC66U, emailAddress=me@myhost.mydomain

issued on : 2017-09-07 18:12:27

expires on : 2027-09-05 18:12:27

signed using : RSA with SHA1

RSA key size : 1024 bits

basic constraints : CA=false

cert. type : SSL Server

key usage : Digital Signature, Key Encipherment

ext key usage : TLS Web Server Authentication



2018-01-19 10:18:32 SSL Handshake: TLSv1.0/TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA

2018-01-19 10:18:32 Session is ACTIVE

2018-01-19 10:18:32 EVENT: GET_CONFIG

2018-01-19 10:18:32 Sending PUSH_REQUEST to server...

2018-01-19 10:18:32 OPTIONS:

0 [route] [192.168.150.0] [255.255.255.0] [vpn_gateway] [500]

1 [dhcp-option] [DNS] [192.168.150.1]

2 [route] [10.8.0.1]

3 [topology] [net30]

4 [ping] [15]

5 [ping-restart] [60]

6 [ifconfig] [10.8.0.6] [10.8.0.5]



2018-01-19 10:18:32 PROTOCOL OPTIONS:

cipher: AES-256-CBC

digest: SHA1

compress: LZO

peer ID: -1

2018-01-19 10:18:32 EVENT: ASSIGN_IP

2018-01-19 10:18:32 NIP: preparing TUN network settings

2018-01-19 10:18:32 NIP: init TUN network settings with endpoint: 85.200.196.196

2018-01-19 10:18:32 NIP: adding IPv4 address to network settings 10.8.0.6/255.255.255.252

2018-01-19 10:18:32 NIP: adding (included) IPv4 route 192.168.150.0/24

2018-01-19 10:18:32 NIP: adding (included) IPv4 route 10.8.0.1/32

2018-01-19 10:18:32 NIP: adding DNS 192.168.150.1

2018-01-19 10:18:32 NIP: adding DNS specific routes:

2018-01-19 10:18:32 NIP: adding (included) IPv4 route 192.168.150.1/32

2018-01-19 10:18:32 Connected via NetworkExtensionTUN

2018-01-19 10:18:32 LZO-ASYM init swap=0 asym=0

2018-01-19 10:18:32 EVENT: CONNECTED iphoneseba@**********.asuscomm.com:3306 (85.200.196.196) via /TCPv4 on NetworkExtensionTUN/10.8.0.6/ gw=[/]

2018-01-19 10:21:37 EVENT: DISCONNECTED

2018-01-19 10:21:37 Raw stats on disconnect:

BYTES_IN : 8740483

BYTES_OUT : 428401

PACKETS_IN : 5970

PACKETS_OUT : 3623

TUN_BYTES_IN : 261463

TUN_BYTES_OUT : 8357007

TUN_PACKETS_IN : 3657

TUN_PACKETS_OUT : 6471

NETWORK_RECV_ERROR : 1

NETWORK_EOF_ERROR : 1

TRANSPORT_ERROR : 2

TCP_OVERFLOW : 27

N_PAUSE : 2

N_RECONNECT : 2

2018-01-19 10:21:37 Performance stats on disconnect:

CPU usage (microseconds): 2587559

Tunnel compression ratio (uplink): 1.63848

Tunnel compression ratio (downlink): 1.04589

Network bytes per CPU second: 3543449

Tunnel bytes per CPU second: 3330733

2018-01-19 10:21:39 ----- OpenVPN Start -----

OpenVPN core 3.1.2 ios arm64 64-bit built on Jan 14 2018 14:23:32

2018-01-19 10:21:39 Frame=512/2048/512 mssfix-ctrl=1250

2018-01-19 10:21:39 UNUSED OPTIONS

14 [resolv-retry] [infinite]

15 [nobind]



2018-01-19 10:21:39 EVENT: RESOLVE

2018-01-19 10:21:39 Contacting [85.200.196.196]:3306/TCP via TCP

2018-01-19 10:21:39 EVENT: WAIT

2018-01-19 10:21:39 Connecting to [thebadboyltz.asuscomm.com]:3306 (85.200.196.196) via TCPv4

2018-01-19 10:21:39 EVENT: CONNECTING

2018-01-19 10:21:39 Tunnel Options:V4,dev-type tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-client

2018-01-19 10:21:39 Creds: Username/Password

2018-01-19 10:21:39 Peer Info:

IV_GUI_VER=net.openvpn.connect.ios 1.2.6-4

IV_VER=3.1.2

IV_PLAT=ios

IV_NCP=2

IV_TCPNL=1

IV_PROTO=2

IV_LZO=1



2018-01-19 10:21:40 VERIFY OK : depth=0

cert. version : 3

serial number : 01

issuer name : C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC66U, emailAddress=me@myhost.mydomain

subject name : C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC66U, emailAddress=me@myhost.mydomain

issued on : 2017-09-07 18:12:27

expires on : 2027-09-05 18:12:27

signed using : RSA with SHA1

RSA key size : 1024 bits

basic constraints : CA=false

cert. type : SSL Server

key usage : Digital Signature, Key Encipherment

ext key usage : TLS Web Server Authentication



2018-01-19 10:21:41 SSL Handshake: TLSv1.0/TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA

2018-01-19 10:21:41 Session is ACTIVE

2018-01-19 10:21:41 EVENT: GET_CONFIG

2018-01-19 10:21:41 Sending PUSH_REQUEST to server...

2018-01-19 10:21:41 OPTIONS:

0 [route] [192.168.150.0] [255.255.255.0] [vpn_gateway] [500]

1 [dhcp-option] [DNS] [192.168.150.1]

2 [route] [10.8.0.1]

3 [topology] [net30]

4 [ping] [15]

5 [ping-restart] [60]

6 [ifconfig] [10.8.0.6] [10.8.0.5]



2018-01-19 10:21:41 PROTOCOL OPTIONS:

cipher: AES-256-CBC

digest: SHA1

compress: LZO

peer ID: -1

2018-01-19 10:21:41 EVENT: ASSIGN_IP

2018-01-19 10:21:41 NIP: preparing TUN network settings

2018-01-19 10:21:41 NIP: init TUN network settings with endpoint: 85.200.196.196

2018-01-19 10:21:41 NIP: adding IPv4 address to network settings 10.8.0.6/255.255.255.252

2018-01-19 10:21:41 NIP: adding (included) IPv4 route 192.168.150.0/24

2018-01-19 10:21:41 NIP: adding (included) IPv4 route 10.8.0.1/32

2018-01-19 10:21:41 NIP: adding DNS 192.168.150.1

2018-01-19 10:21:41 NIP: adding match domain ALL

2018-01-19 10:21:41 NIP: adding DNS specific routes:

2018-01-19 10:21:41 NIP: adding (included) IPv4 route 192.168.150.1/32

2018-01-19 10:21:41 Connected via NetworkExtensionTUN

2018-01-19 10:21:41 LZO-ASYM init swap=0 asym=0

2018-01-19 10:21:41 EVENT: CONNECTED iphoneseba@xxxxxxxxx.asuscomm.com:3306 (85.200.196.196) via /TCPv4 on NetworkExtensionTUN/10.8.0.6/ gw=[/]

2018-01-19 10:24:30 TCP recv EOF

2018-01-19 10:24:30 Transport Error: Transport error on 'thebadboyltz.asuscomm.com: NETWORK_EOF_ERROR

2018-01-19 10:24:30 EVENT: TRANSPORT_ERROR Transport error on 'thebadboyltz.asuscomm.com: NETWORK_EOF_ERROR [ERR]

2018-01-19 10:24:30 Client terminated, restarting in 5000 ms...

2018-01-19 10:24:33 RECONNECT TEST: Internet:ReachableViaWWAN/WR t------

2018-01-19 10:24:33 ACTIVE PAUSE

2018-01-19 10:24:33 EVENT: PAUSE

2018-01-19 10:24:34 RESUME TEST: Internet:ReachableViaWWAN/WR t------

2018-01-19 10:24:34 STANDARD RESUME

2018-01-19 10:24:34 EVENT: RESUME

2018-01-19 10:24:34 EVENT: RECONNECTING

2018-01-19 10:24:34 Contacting [85.200.196.196]:3306/TCP via TCP

2018-01-19 10:24:34 EVENT: WAIT

2018-01-19 10:24:34 Connecting to [xxxxxx.asuscomm.com]:3306 (85.200.196.196) via TCPv4

2018-01-19 10:24:34 EVENT: CONNECTING

2018-01-19 10:24:34 Tunnel Options:V4,dev-type tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-client

2018-01-19 10:24:34 Creds: Username/Password

2018-01-19 10:24:34 Peer Info:

IV_GUI_VER=net.openvpn.connect.ios 1.2.6-4

IV_VER=3.1.2

IV_PLAT=ios

IV_NCP=2

IV_TCPNL=1

IV_PROTO=2

IV_LZO=1



2018-01-19 10:24:35 VERIFY OK : depth=0

cert. version : 3

serial number : 01

issuer name : C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC66U, emailAddress=me@myhost.mydomain

subject name : C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC66U, emailAddress=me@myhost.mydomain

issued on : 2017-09-07 18:12:27

expires on : 2027-09-05 18:12:27

signed using : RSA with SHA1

RSA key size : 1024 bits

basic constraints : CA=false

cert. type : SSL Server

key usage : Digital Signature, Key Encipherment

ext key usage : TLS Web Server Authentication



2018-01-19 10:24:35 SSL Handshake: TLSv1.0/TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA

2018-01-19 10:24:35 Session is ACTIVE

2018-01-19 10:24:36 EVENT: GET_CONFIG

2018-01-19 10:24:36 Sending PUSH_REQUEST to server...

2018-01-19 10:24:36 OPTIONS:

0 [route] [192.168.150.0] [255.255.255.0] [vpn_gateway] [500]

1 [dhcp-option] [DNS] [192.168.150.1]

2 [route] [10.8.0.1]

3 [topology] [net30]

4 [ping] [15]

5 [ping-restart] [60]

6 [ifconfig] [10.8.0.6] [10.8.0.5]



2018-01-19 10:24:36 PROTOCOL OPTIONS:

cipher: AES-256-CBC

digest: SHA1

compress: LZO

peer ID: -1

2018-01-19 10:24:36 Connected via NetworkExtensionTUN

2018-01-19 10:24:36 LZO-ASYM init swap=0 asym=0

2018-01-19 10:24:36 EVENT: CONNECTED iphoneseba@xxxxxxxasuscomm.com:3306 (85.200.196.196) via /TCPv4 on NetworkExtensionTUN/10.8.0.6/ gw=[/]

[ordex]

This is likely the same problem other people are having when connecting using TCP.
There is already an open ticket for this issue in our bug tracker. Hopefully the next release will fix it.

In the meantime, if you can, you may want to switch to UDP.

[thebadboy]

Hello
I will try with UDP in troubleshooting solution.


In my IOS application the certificates are not present and I can not import them

[ordex]

In my IOS application the certificates are not present and I can not import them

Are you talking about .p12 files? If so, please check https://docs.openvpn.net/faqs/faq-regar ... S_Keychain

[thebadboy]

My asus router creates an OVPN file,

I rename this file with the extension ".ovpn12", when I send this file to the application I am asked for a password .... I do not know where to find a password!



Thanks for your help

[ordex]

My asus router creates an OVPN file,

I rename this file with the extension ".ovpn12", when I send this file to the application I am asked for a password .... I do not know where to find a password!



Thanks for your help

.ovpn files are configuration files and they should not be renamed. They have to sent as they are.

Only .p12 files have to be renamed to .ovpn12

[thebadboy]

here I tested with the UDP protocol and it works.

Highly an update for the TCP protocol to work.


thanks for the help