Hi,
I am using IOS openvpn client-1.0.1 to connect to my server.
In case of UDP client-server configuration, I am able to connect server but just after 40 seconds, client re-authenticate it self and thus server pushes a new IP.
If I add "keepalive 30 300" in client/server openvpn.conf than it is working perfectly fine.
In keepalive <sec> <try> if sec < 40 than only I am getting an issue.
Server openvpn.conf
================
port 8443
proto udp
multihome
dev tun
ca "/xyz/abc/sslvpn/serverca.pem"
cert "/xyz/abc/ApplianceCertificate.pem"
key "/xyz/abc/sslvpn/servercertkey.key"
dh "/xyz/certificate/sslvpn/keys/dh1024.pem"
topology subnet
mode server
tls-server
duplicate-cn
management 127.0.0.2 1211
push "topology subnet"
ifconfig 10.71.243.5 255.255.255.0
ifconfig-pool 10.71.243.7 10.81.243.55 255.255.255.0
push "route-gateway 10.71.243.5"
max-clients 200
comp-lzo
persist-key
persist-tun
client-connect /scripts/vpn/sslvpn/clientconnect.sh
client-disconnect /scripts/vpn/sslvpn/clientdisconnect.sh
keepalive 60 400
push "inactive 900 250"
cipher BF-CBC
Clinet openvpn.conf
===============
client
dev tun
port 8443
proto udp
remote x.y.z.p
resolv-retry infinite
nobind
persist-key
persist-tun
auth-user-pass
comp-lzo
auth-retry interact
verb 3
reneg-sec 0
status sfssl_client_status.log
ca RootCertificate.pem
cert UserCertificate.pem
key UserPrivateKey.key
ca "C:\\Documents and Settings\\xyz\\config\\RootCertificate.pem"
cert "C:\\Documents and Settings\\xyz\\config\\UserCertificate.pem"
key "C:\\Documents and Settings\\xyz\\config\\UserPrivateKey.key"
Please help me on this issue.
IOS openvpn 1.0.1 connect multiple time if keepalive absent
-
harish.jhala
- OpenVpn Newbie
- Posts: 1
- Joined: Mon Aug 26, 2013 9:02 am