iOS will not connect to DD-WRT

Official client software for OpenVPN Access Server and OpenVPN Cloud.
Post Reply
radiocolin
OpenVpn Newbie
Posts: 13
Joined: Fri Mar 07, 2014 5:23 pm

iOS will not connect to DD-WRT

Post by radiocolin » Sun Aug 24, 2014 4:00 am

Hello all,

I recently migrated from a Linksys E2000 running Tomato to a Netgear R6300v2 running Kong's build.

The only thing I have had no success in is migrating my OpenVPN server over to the new router.

When I attempt to connect from my iOS device, it simply never connects. It sits at waiting forever.

Here is my config in the GUI:

Image
Image

And the textual version (generated by the gui):
dh /tmp/openvpn/dh.pem
ca /tmp/openvpn/ca.crt
cert /tmp/openvpn/cert.pem
key /tmp/openvpn/key.pem
keepalive 10 120
verb 3
mute 3
syslog writepid /var/run/openvpnd.pid
management 127.0.0.1 14
management-log-cache 100
topology subnet
script-security 2
port 1194
proto udp
cipher aes-128-cbc
auth sha1
client-connect
/tmp/openvpn/clcon.sh
client-disconnect /tmp/openvpn/cldiscon.sh
client-config-dir /tmp/openvpn/ccd
comp-lzo yes
tls-server
ifconfig-pool-persist /tmp/openvpn/ip-pool 86400
client-to-client push
"redirect-gateway def1"
fast-io
tun-mtu 1500
mtu-disc yes
server 10.8.0.0 255.255.255.0
dev tun2
tun-ipv6
Here is my client config:
(I'm using a P12 file on the iOS devices, but also tried it with the personal key/cert in the config file)
client
dev tun
proto udp
remote [HOSTNAME REMOVED] 1194
pull
resolv-retry infinite
nobind
persist-key
persist-tun
<ca>
-----BEGIN CERTIFICATE-----
(removed)
-----END CERTIFICATE-----
</ca>
ns-cert-type server
cipher AES-128-CBC
comp-lzo
verb 5
float
Here is the log from OpenVPN:
Serverlog:
19691231 19:00:11 I OpenVPN 2.3.4 arm-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Aug 15 2014
19691231 19:00:11 I library versions: OpenSSL 1.0.1i 6 Aug 2014 LZO 2.08
19691231 19:00:11 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:14
19691231 19:00:11 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
19691231 19:00:11 Diffie-Hellman initialized with 2048 bit key
19691231 19:00:11 Socket Buffers: R=[180224->131072] S=[180224->131072]
19691231 19:00:11 I TUN/TAP device tun2 opened
19691231 19:00:11 TUN/TAP TX queue length set to 100
19691231 19:00:11 I do_ifconfig tt->ipv6=1 tt->did_ifconfig_ipv6_setup=0
19691231 19:00:11 I /sbin/ifconfig tun2 10.8.0.1 netmask 255.255.255.0 mtu 1500 broadcast 10.8.0.255
19691231 19:00:11 I UDPv4 link local (bound): [undef]
19691231 19:00:11 I UDPv4 link remote: [undef]
19691231 19:00:11 MULTI: multi_init called r=256 v=256
19691231 19:00:11 IFCONFIG POOL: base=10.8.0.2 size=252 ipv6=0
19691231 19:00:11 IFCONFIG POOL LIST
19691231 19:00:11 I Initialization Sequence Completed
20140823 23:34:03 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:14
20140823 23:34:03 D MANAGEMENT: CMD 'state'
20140823 23:34:03 MANAGEMENT: Client disconnected
20140823 23:34:03 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:14
20140823 23:34:03 D MANAGEMENT: CMD 'state'
20140823 23:34:03 MANAGEMENT: Client disconnected
20140823 23:34:03 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:14
20140823 23:34:03 D MANAGEMENT: CMD 'state'
20140823 23:34:03 MANAGEMENT: Client disconnected
20140823 23:34:03 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:14
20140823 23:34:03 D MANAGEMENT: CMD 'status 2'
20140823 23:34:03 MANAGEMENT: Client disconnected
20140823 23:34:03 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:14
20140823 23:34:03 D MANAGEMENT: CMD 'log 500'
19691231 19:00:00
And here is the log from iOS:
2014-08-23 23:18:32 ----- OpenVPN Start (iOS 64-bit) -----
2014-08-23 23:18:32 Keychain Cert Extraction: 1 certificate(s) found
2014-08-23 23:18:32 UNUSED OPTIONS
4 [pull]
5 [resolv-retry] [infinite]
6 [nobind]
7 [persist-key]
8 [persist-tun]
13 [verb] [5]
14 [float]

2014-08-23 23:18:32 LZO-ASYM init swap=0 asym=0
2014-08-23 23:18:32 EVENT: RESOLVE
2014-08-23 23:18:32 Contacting [IP REMOVED]:1194 via UDP
2014-08-23 23:18:32 EVENT: WAIT
2014-08-23 23:18:32 Connecting to [HOSTNAME REMOVED]:1194 ([IP REMOVED]) via UDPv4
2014-08-23 23:18:42 Server poll timeout, trying next remote entry...
2014-08-23 23:18:42 EVENT: RECONNECTING
2014-08-23 23:18:42 LZO-ASYM init swap=0 asym=0
2014-08-23 23:18:42 EVENT: RESOLVE
2014-08-23 23:18:43 Contacting [IP REMOVED]:1194 via UDP
2014-08-23 23:18:43 EVENT: WAIT
2014-08-23 23:18:43 Connecting to [HOSTNAME REMOVED]:1194 ([IP REMOVED]) via UDPv4
2014-08-23 23:18:52 Server poll timeout, trying next remote entry...
2014-08-23 23:18:52 EVENT: RECONNECTING
2014-08-23 23:18:52 LZO-ASYM init swap=0 asym=0
2014-08-23 23:18:52 EVENT: RESOLVE
2014-08-23 23:18:52 Contacting [IP REMOVED]:1194 via UDP
2014-08-23 23:18:52 EVENT: WAIT
2014-08-23 23:18:52 Connecting to [HOSTNAME REMOVED]:1194 ([IP REMOVED]) via UDPv4
2014-08-23 23:19:02 Server poll timeout, trying next remote entry...
2014-08-23 23:19:02 EVENT: RECONNECTING
2014-08-23 23:19:02 LZO-ASYM init swap=0 asym=0
2014-08-23 23:19:02 EVENT: RESOLVE
2014-08-23 23:19:02 Contacting [IP REMOVED]:1194 via UDP
2014-08-23 23:19:02 EVENT: WAIT
2014-08-23 23:19:02 Connecting to [HOSTNAME REMOVED]:1194 ([IP REMOVED]) via UDPv4
2014-08-23 23:19:12 Server poll timeout, trying next remote entry...
2014-08-23 23:19:12 EVENT: RECONNECTING
2014-08-23 23:19:12 LZO-ASYM init swap=0 asym=0
2014-08-23 23:19:12 EVENT: RESOLVE
2014-08-23 23:19:12 Contacting [IP REMOVED]:1194 via UDP
2014-08-23 23:19:12 EVENT: WAIT
2014-08-23 23:19:12 Connecting to [HOSTNAME REMOVED]:1194 ([IP REMOVED]) via UDPv4
2014-08-23 23:19:22 Server poll timeout, trying next remote entry...
2014-08-23 23:19:22 EVENT: RECONNECTING
2014-08-23 23:19:22 LZO-ASYM init swap=0 asym=0
2014-08-23 23:19:22 EVENT: RESOLVE
2014-08-23 23:19:22 Contacting [IP REMOVED]:1194 via UDP
2014-08-23 23:19:22 EVENT: WAIT
2014-08-23 23:19:22 Connecting to [HOSTNAME REMOVED]:1194 ([IP REMOVED]) via UDPv4
2014-08-23 23:19:32 EVENT: CONNECTION_TIMEOUT [ERR]
2014-08-23 23:19:32 EVENT: DISCONNECTED
2014-08-23 23:19:32 Raw stats on disconnect:
BYTES_OUT : 420
PACKETS_OUT : 30
CONNECTION_TIMEOUT : 1
N_RECONNECT : 5
2014-08-23 23:19:32 Performance stats on disconnect:
CPU usage (microseconds): 47685
Network bytes per CPU second: 8807
Tunnel bytes per CPU second: 0
2014-08-23 23:19:32 ----- OpenVPN Stop -----
2014-08-23 23:19:32 EVENT: DISCONNECT_PENDING
I've tried

Migrating my old Tomato configuration verbatim

Using this tutorial: http://www.dd-wrt.com/wiki/index.php/VP ... ay)_v24%2B

And using this tutorial: topic12112.html
(Plus several of the links on it)

And this one: http://www.dd-wrt.com/phpBB2/viewtopic.php?t=168295

And this one: http://www.dd-wrt.com/phpBB2/viewtopic.php?t=147837

radiocolin
OpenVpn Newbie
Posts: 13
Joined: Fri Mar 07, 2014 5:23 pm

Re: iOS will not connect to DD-WRT

Post by radiocolin » Sun Aug 24, 2014 7:57 pm

Traffic wrote:There are no obvious errors in your configs ..

The client cannot contact the server .. it looks like your firewall is blocking you.
Can the client ping the server by Server name (when OpenVPN is down) ?
Unfortunately I can't ping from my iOS device.

I'm able to get through to other services on my network. I have no firewall rules configured.

If I enable logging on the firewall, and attempt to connect from LTE, my firewall logs show a UDP connection from my phone's IP on port 1194 as accepted.

radiocolin
OpenVpn Newbie
Posts: 13
Joined: Fri Mar 07, 2014 5:23 pm

Re: iOS will not connect to DD-WRT

Post by radiocolin » Sun Aug 24, 2014 8:32 pm

(That is to say, I don't have any apps capable of doing a ping, not that a ping was unsuccessful)

radiocolin
OpenVpn Newbie
Posts: 13
Joined: Fri Mar 07, 2014 5:23 pm

Re: iOS will not connect to DD-WRT

Post by radiocolin » Tue Aug 26, 2014 3:10 am

I'm now able to start authenticating, but get endless TLS delay errors.

radiocolin
OpenVpn Newbie
Posts: 13
Joined: Fri Mar 07, 2014 5:23 pm

Re: iOS will not connect to DD-WRT

Post by radiocolin » Tue Aug 26, 2014 10:43 pm

20140826 11:20:36 38.104.111.82:24530 TLS: Initial packet from [AF_INET]38.104.111.82:24530 sid=234734f5 7d60d964
20140826 11:20:36 N 38.104.111.82:24530 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066436) Tue Aug 26 11:20:36 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:20:36 N 38.104.111.82:24530 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:24530
20140826 11:20:38 N 38.104.111.82:24530 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066436) Tue Aug 26 11:20:36 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:20:38 N 38.104.111.82:24530 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:24530
20140826 11:20:40 N 38.104.111.82:24530 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066436) Tue Aug 26 11:20:36 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:20:40 N 38.104.111.82:24530 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:24530
20140826 11:20:42 N 38.104.111.82:24530 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066436) Tue Aug 26 11:20:36 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:20:42 N 38.104.111.82:24530 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:24530
20140826 11:20:44 38.104.111.82:4327 TLS: Initial packet from [AF_INET]38.104.111.82:4327 sid=5b1d9f64 d0cb54ea
20140826 11:20:46 N 38.104.111.82:4327 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066446) Tue Aug 26 11:20:46 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:20:46 N 38.104.111.82:4327 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:4327
20140826 11:20:48 N 38.104.111.82:4327 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066446) Tue Aug 26 11:20:46 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:20:48 N 38.104.111.82:4327 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:4327
20140826 11:20:50 N 38.104.111.82:4327 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066446) Tue Aug 26 11:20:46 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:20:50 N 38.104.111.82:4327 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:4327
20140826 11:20:52 N 38.104.111.82:4327 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066446) Tue Aug 26 11:20:46 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:20:52 N 38.104.111.82:4327 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:4327
20140826 11:20:54 38.104.111.82:16740 TLS: Initial packet from [AF_INET]38.104.111.82:16740 sid=1d2416e7 8e0ce003
20140826 11:20:56 N 38.104.111.82:16740 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066456) Tue Aug 26 11:20:56 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:20:56 N 38.104.111.82:16740 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:16740
20140826 11:20:58 N 38.104.111.82:16740 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066456) Tue Aug 26 11:20:56 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:20:58 N 38.104.111.82:16740 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:16740
20140826 11:21:00 N 38.104.111.82:16740 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066456) Tue Aug 26 11:20:56 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:21:00 N 38.104.111.82:16740 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:16740
20140826 11:21:02 N 38.104.111.82:16740 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066456) Tue Aug 26 11:20:56 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:21:02 N 38.104.111.82:16740 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:16740
20140826 11:21:04 38.104.111.82:17841 TLS: Initial packet from [AF_INET]38.104.111.82:17841 sid=5cc6d9b9 794c06a6
20140826 11:21:06 N 38.104.111.82:17841 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066466) Tue Aug 26 11:21:06 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:21:06 N 38.104.111.82:17841 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:17841
20140826 11:21:08 N 38.104.111.82:17841 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066466) Tue Aug 26 11:21:06 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:21:08 N 38.104.111.82:17841 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:17841
20140826 11:21:10 N 38.104.111.82:17841 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066466) Tue Aug 26 11:21:06 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:21:10 N 38.104.111.82:17841 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:17841
20140826 11:21:12 N 38.104.111.82:17841 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066466) Tue Aug 26 11:21:06 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:21:12 N 38.104.111.82:17841 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:17841
20140826 11:21:14 38.104.111.82:5832 TLS: Initial packet from [AF_INET]38.104.111.82:5832 sid=98fe5e67 7ed70150
20140826 11:21:16 N 38.104.111.82:5832 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066476) Tue Aug 26 11:21:16 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:21:16 N 38.104.111.82:5832 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:5832
20140826 11:21:18 N 38.104.111.82:5832 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066476) Tue Aug 26 11:21:16 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:21:18 N 38.104.111.82:5832 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:5832
20140826 11:21:20 N 38.104.111.82:5832 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066476) Tue Aug 26 11:21:16 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:21:20 N 38.104.111.82:5832 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:5832
20140826 11:21:22 N 38.104.111.82:5832 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066476) Tue Aug 26 11:21:16 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:21:22 N 38.104.111.82:5832 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:5832
20140826 11:21:24 38.104.111.82:21018 TLS: Initial packet from [AF_INET]38.104.111.82:21018 sid=3a08393c 8e3d16f8
20140826 11:21:26 N 38.104.111.82:21018 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066486) Tue Aug 26 11:21:26 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:21:26 N 38.104.111.82:21018 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:21018
20140826 11:21:28 N 38.104.111.82:21018 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066486) Tue Aug 26 11:21:26 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:21:28 N 38.104.111.82:21018 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:21018
20140826 11:21:30 N 38.104.111.82:21018 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066486) Tue Aug 26 11:21:26 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:21:30 N 38.104.111.82:21018 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:21018
20140826 11:21:32 N 38.104.111.82:21018 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1 / time = (1409066486) Tue Aug 26 11:21:26 2014 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
20140826 11:21:32 N 38.104.111.82:21018 TLS Error: incoming packet authentication failed from [AF_INET]38.104.111.82:21018
20140826 11:21:36 N 38.104.111.82:24530 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20140826 11:21:36 N 38.104.111.82:24530 TLS Error: TLS handshake failed
20140826 11:21:36 38.104.111.82:24530 SIGUSR1[soft tls-error] received client-instance restarting
20140826 11:21:44 N 38.104.111.82:4327 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20140826 11:21:44 N 38.104.111.82:4327 TLS Error: TLS handshake failed
20140826 11:21:44 38.104.111.82:4327 SIGUSR1[soft tls-error] received client-instance restarting
20140826 11:21:54 N 38.104.111.82:16740 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20140826 11:21:54 N 38.104.111.82:16740 TLS Error: TLS handshake failed
20140826 11:21:54 38.104.111.82:16740 SIGUSR1[soft tls-error] received client-instance restarting
20140826 11:22:05 N 38.104.111.82:17841 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20140826 11:22:05 N 38.104.111.82:17841 TLS Error: TLS handshake failed
20140826 11:22:05 38.104.111.82:17841 SIGUSR1[soft tls-error] received client-instance restarting
20140826 11:22:14 N 38.104.111.82:5832 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20140826 11:22:14 N 38.104.111.82:5832 TLS Error: TLS handshake failed
20140826 11:22:14 38.104.111.82:5832 SIGUSR1[soft tls-error] received client-instance restarting
20140826 11:22:24 N 38.104.111.82:21018 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20140826 11:22:24 N 38.104.111.82:21018 TLS Error: TLS handshake failed
20140826 11:22:24 38.104.111.82:21018 SIGUSR1[soft tls-error] received client-instance restarting
20140826 18:43:23 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:14
20140826 18:43:23 D MANAGEMENT: CMD 'state'
20140826 18:43:23 MANAGEMENT: Client disconnected
20140826 18:43:23 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:14
20140826 18:43:23 D MANAGEMENT: CMD 'state'
20140826 18:43:23 MANAGEMENT: Client disconnected
20140826 18:43:23 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:14
20140826 18:43:23 D MANAGEMENT: CMD 'state'
20140826 18:43:23 MANAGEMENT: Client disconnected
20140826 18:43:23 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:14
20140826 18:43:23 D MANAGEMENT: CMD 'status 2'
20140826 18:43:23 MANAGEMENT: Client disconnected
20140826 18:43:23 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:14
20140826 18:43:23 D MANAGEMENT: CMD 'log 500'
19691231 19:00:00

radiocolin
OpenVpn Newbie
Posts: 13
Joined: Fri Mar 07, 2014 5:23 pm

Re: iOS will not connect to DD-WRT

Post by radiocolin » Wed Aug 27, 2014 1:19 am

All the times on all the devices are synced.

If I connect while on my home network, it connects and authenticates but I can't browse. If I try to come in from cellular, it gives me those may be a replay orders.

radiocolin
OpenVpn Newbie
Posts: 13
Joined: Fri Mar 07, 2014 5:23 pm

Re: iOS will not connect to DD-WRT

Post by radiocolin » Wed Aug 27, 2014 4:24 pm

After 3 days of trying every possible config and combination of firewall rules, I said screw it and set up the server on my Raspberry Pi. Now humming away with no problems.

radiocolin
OpenVpn Newbie
Posts: 13
Joined: Fri Mar 07, 2014 5:23 pm

Re: iOS will not connect to DD-WRT

Post by radiocolin » Thu Aug 28, 2014 1:33 am

3 nights was enough. Unfortunately this is going to be one of those threads that someone finds in 3 years when they have the exact same problem.

Netsurfer
OpenVpn Newbie
Posts: 11
Joined: Tue Nov 04, 2014 4:43 pm

Re: iOS will not connect to DD-WRT

Post by Netsurfer » Tue Nov 04, 2014 4:46 pm

Not 3 years but 3 months man :lol:
I have more or less the same problem and it's not something dealing with the firewall!
If I put those configuration files inside something else it works (Android, my mac and so on).
So... there is "something" that needs to be changed on iOS (and perhaps in server configuration too) in order not to get that TLS handshake error anymore and I still don't know what it is...

Netsurfer
OpenVpn Newbie
Posts: 11
Joined: Tue Nov 04, 2014 4:43 pm

Re: iOS will not connect to DD-WRT

Post by Netsurfer » Wed Nov 05, 2014 10:54 am

with GuizmOVPN it works but you can not use that on not jailbroken devices...

Netsurfer
OpenVpn Newbie
Posts: 11
Joined: Tue Nov 04, 2014 4:43 pm

Re: iOS will not connect to DD-WRT

Post by Netsurfer » Fri Nov 07, 2014 4:33 am

Well... I asked a friend of mine to give my configuration file a shot because he uses iOS8... It works! Perhaps someone will consider this information useful... bye ;)

Post Reply