have two Windows 2012R2 Server (client/server) with OpenVPN latest Version. I connect to my client and build up a kind of side to side VPN.
Since 2-3 week there is paket lost/droped. When i make a perm ping sometimes it break away. In log file there is a error like "MULTI: Outgoing TUN queue full, dropped packet len=x" and the connection freez.
Some other moments the connection freez for 3-4sek and then run again. Here my conf files. Any idea what the problem can be?
Server Conf
port 443
proto tcp4-server
dev tun
server 172.22.0.0 255.255.0.0
ca "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ca.crt"
cert "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\crt.crt"
key "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\key.key"
dh "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\dh4096.pem"
tls-auth "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ta.key" 0
client-config-dir C:\\Temp\\OpenVPN_Client_Config
route 10.1.0.0 255.255.0.0
route 192.168.0.0 255.255.0.0
push "route 10.1.0.0 255.255.0.0"
push "route 192.168.0.0 255.255.0.0"
ifconfig-pool-persist ipp.txt
client-to-client
auth SHA512
cipher AES-256-CBC
tls-cipher TLS-DHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256:TLS-DHE-RSA-WITH-AES-128-GCM-SHA256:TLS-DHE-RSA-WITH-AES-128-CBC-SHA256
tls-version-min 1.2
remote-cert-tls client
comp-lzo
keepalive 10 120
persist-key
persist-tun
status openvpn-status.log
log-append openvpn.log
verb 4
management 127.0.0.1 7505
tcp-queue-limit 256
sndbuf 327680
rcvbuf 327680
socket-flags TCP_NODELAY
push "socket-flags TCP_NODELAY"
proto tcp4-server
dev tun
server 172.22.0.0 255.255.0.0
ca "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ca.crt"
cert "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\crt.crt"
key "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\key.key"
dh "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\dh4096.pem"
tls-auth "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ta.key" 0
client-config-dir C:\\Temp\\OpenVPN_Client_Config
route 10.1.0.0 255.255.0.0
route 192.168.0.0 255.255.0.0
push "route 10.1.0.0 255.255.0.0"
push "route 192.168.0.0 255.255.0.0"
ifconfig-pool-persist ipp.txt
client-to-client
auth SHA512
cipher AES-256-CBC
tls-cipher TLS-DHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256:TLS-DHE-RSA-WITH-AES-128-GCM-SHA256:TLS-DHE-RSA-WITH-AES-128-CBC-SHA256
tls-version-min 1.2
remote-cert-tls client
comp-lzo
keepalive 10 120
persist-key
persist-tun
status openvpn-status.log
log-append openvpn.log
verb 4
management 127.0.0.1 7505
tcp-queue-limit 256
sndbuf 327680
rcvbuf 327680
socket-flags TCP_NODELAY
push "socket-flags TCP_NODELAY"
Client
dev tun
remote publicIP
port 443
proto tcp4-client
tls-client
ca "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ca.crt"
cert "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\crt.crt"
key "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\key.key"
tls-auth "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ta.key" 1
pull
cipher AES-256-CBC
keepalive 10 120
comp-lzo
verb 3
auth SHA512
tls-cipher TLS-DHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256:TLS-DHE-RSA-WITH-AES-128-GCM-SHA256:TLS-DHE-RSA-WITH-AES-128-CBC-SHA256
remote-cert-tls server
verify-x509-name Zert name
tcp-queue-limit 256
remote publicIP
port 443
proto tcp4-client
tls-client
ca "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ca.crt"
cert "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\crt.crt"
key "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\key.key"
tls-auth "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ta.key" 1
pull
cipher AES-256-CBC
keepalive 10 120
comp-lzo
verb 3
auth SHA512
tls-cipher TLS-DHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256:TLS-DHE-RSA-WITH-AES-128-GCM-SHA256:TLS-DHE-RSA-WITH-AES-128-CBC-SHA256
remote-cert-tls server
verify-x509-name Zert name
tcp-queue-limit 256
