OpenVPN connection fails with unexpected EOF for large requests

Official client software for OpenVPN Access Server and OpenVPN Cloud.
Post Reply
TheoD
OpenVpn Newbie
Posts: 2
Joined: Mon Aug 23, 2021 7:12 pm

OpenVPN connection fails with unexpected EOF for large requests

Post by TheoD » Mon Aug 23, 2021 7:14 pm

Hi there,

In our company, we have a private docker registry, accessible from home only via OpenVPN.

With the latest Docker for Windows, if I perform a docker pull some_large_image, after a while, I receive unexpected EOF and the download is canceled. This happens reproduceable so that there is no way for me to download the image.

If with the exact notebook I perform the same docker pull command in the company intranet attached via LAN (and without the need to use OpenVPN), the command works fine every time. So I expect this to be some issue with OpenVPN or our configuration.

My environment is Windows 10 professional, tested with 1910 and 2004. I use the latest OpenVPN GUI for windows.
Here is my OpenVPN config:

Code: Select all

client
dev tun
proto udp
remote vpn.REMOVED.de 22194
verify-x509-name "REMOVED"
resolv-retry infinite
nobind
persist-key
persist-tun
auth-user-pass
cipher AES-256-GCM
auth SHA384
route-delay 4
verb 3
reneg-sec 0
tun-mtu 1500
fragment 1300
mssfix
<tls-crypt>
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
REMOVED
-----END OpenVPN Static key V1-----
</tls-crypt>
<ca>
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            REMOVED
    Signature Algorithm: ecdsa-with-SHA256
        Issuer: REMOVED
        Validity
            Not Before: REMOVED
            Not After : REMOVED
        Subject: REMOVED
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (384 bit)
                pub: 
                    REMOVED
                ASN1 OID: secp384r1
                NIST CURVE: P-384
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                REMOVED
            X509v3 Authority Key Identifier: 
                REMOVED

            X509v3 Basic Constraints: 
                CA:TRUE
            X509v3 Key Usage: 
                Certificate Sign, CRL Sign
    Signature Algorithm: ecdsa-with-SHA256
         REMOVED
-----BEGIN CERTIFICATE-----
REMOVED
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
REMOVED
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
REMOVED
-----END PRIVATE KEY-----
</key>
Is this a bug in OpenVPN or any misconfiguration?

I was able to reproduce the issue without docker but using git clone on a git repo hosted at my company. Seems related to large downloads somehow..

Note that this thread is a copy from a github OpenVPN issue which was closed and in which I was pointed to create a thread here instead. ( https://github.com/OpenVPN/openvpn-gui/issues/353 )

TinCanTech
OpenVPN Protagonist
Posts: 11137
Joined: Fri Jun 03, 2016 1:17 pm

Re: OpenVPN connection fails with unexpected EOF for large requests

Post by TinCanTech » Mon Aug 23, 2021 7:35 pm

TheoD wrote:
Mon Aug 23, 2021 7:14 pm
thread is a copy from a github OpenVPN issue which was closed and in which I was pointed to create a thread here instead
Are you using Openvpn-Connect for Windows ?

TheoD
OpenVpn Newbie
Posts: 2
Joined: Mon Aug 23, 2021 7:12 pm

Re: OpenVPN connection fails with unexpected EOF for large requests

Post by TheoD » Mon Aug 23, 2021 7:49 pm

Ah my bad, I just saw "Windows" in the boards overview and thought "That's where I need to be", browsed through the Topics in there and didn't see something sounding similar to my issue so I created a post. Now that you are pointing me to it: No I use the open source variant, not enterprise. Can you point me to where I should open the issue?

TinCanTech
OpenVPN Protagonist
Posts: 11137
Joined: Fri Jun 03, 2016 1:17 pm

Re: OpenVPN connection fails with unexpected EOF for large requests

Post by TinCanTech » Mon Aug 23, 2021 9:47 pm


Post Reply