hello
i have problem with new vesion 1.0.2, when i update my open vpn to Version 1.0.2 i cannot connect with TCP, i check this problem on 3 devices, bat when i install again the old version i can connect TCP, plz help me.
TCP Connectiong problem with new vesion on iOS
-
masi892
- OpenVpn Newbie
- Posts: 3
- Joined: Mon Dec 23, 2013 6:37 am
-
jamesyonan
- OpenVPN Inc.
- Posts: 169
- Joined: Thu Jan 24, 2013 12:13 am
Re: TCP Connectiong problem with new vesion on iOS
Can you post your config file (without keys)?
James
James
-
parastoo
- OpenVpn Newbie
- Posts: 3
- Joined: Tue Dec 24, 2013 3:52 pm
Re: TCP Connectiong problem with new vesion on iOS
Hi,
We use OpenVPN from IRAN on iOS Apple devices.
Version 1.00 worked perfectly with the protocol TCP and UDP on all iphone / ipad, except iphone 5S ....
You made an update for the iPhone 5S (64bits ) which also allowed to use OpenVPN on iPhone 5S (64 bits).
Last Saturday , the Iranian government has blocking UDP ports and make some changes on ports to prevent Internet VPN to function. Since that day OpenVPN 1.02 does not work on any iOS device ( seen in Log : KEV_NEGOTIATE_ERROR ) .
Today I was able to reinstall the 1.00 version of OpenVPN on a iphone 4S ( 32bit ) and another on a iphone 5C ( 32-bit) , and OpenVPN work perfectly!!!
But if i install OpenVpn 1.02 on the same devices, OpenVPN does not work (KEV_NEGOTIATE_ERROR)...
So this shows that the OpenVPN code 1.02 has undergone unnecessary changes that prevent it from connecting to the VPN in Iran ...
Could you please correct and explain why OpenVPN 1.00 TCP works in Iran , while OpenVPN 1.02 does not work at all? ?
I am at your disposal to send you the logs if necessary ...
Thank you for your help ..
Regards,
We use OpenVPN from IRAN on iOS Apple devices.
Version 1.00 worked perfectly with the protocol TCP and UDP on all iphone / ipad, except iphone 5S ....
You made an update for the iPhone 5S (64bits ) which also allowed to use OpenVPN on iPhone 5S (64 bits).
Last Saturday , the Iranian government has blocking UDP ports and make some changes on ports to prevent Internet VPN to function. Since that day OpenVPN 1.02 does not work on any iOS device ( seen in Log : KEV_NEGOTIATE_ERROR ) .
Today I was able to reinstall the 1.00 version of OpenVPN on a iphone 4S ( 32bit ) and another on a iphone 5C ( 32-bit) , and OpenVPN work perfectly!!!
But if i install OpenVpn 1.02 on the same devices, OpenVPN does not work (KEV_NEGOTIATE_ERROR)...
So this shows that the OpenVPN code 1.02 has undergone unnecessary changes that prevent it from connecting to the VPN in Iran ...
Could you please correct and explain why OpenVPN 1.00 TCP works in Iran , while OpenVPN 1.02 does not work at all? ?
I am at your disposal to send you the logs if necessary ...
Thank you for your help ..
Regards,
-
foryourheart
- OpenVpn Newbie
- Posts: 2
- Joined: Thu Jan 08, 2015 12:58 pm
Re: TCP Connectiong problem with new vesion on iOS
I also get this "Session invalidated: KEV_NEGOTIATE_ERROR" on iOS app 1.05 running on an iphone 5s. Can't verify on other devices though. The server works flowlessly outside of Iran but within Iran governemnt tends to mess with negotation part.
Here are some tags: Tun device, iOS 8, iPhone 5s, AES-CBC, TCP port 443 (encrypted non-SSL ports are not happy with the Iran blockage and firewalls ofcourse).
Thanks
Here are some tags: Tun device, iOS 8, iPhone 5s, AES-CBC, TCP port 443 (encrypted non-SSL ports are not happy with the Iran blockage and firewalls ofcourse).
Thanks
-
chasingman
- OpenVpn Newbie
- Posts: 1
- Joined: Fri Apr 24, 2015 2:42 pm
Re: TCP Connectiong problem with new vesion on iOS
I have the exact same issue. Conncection through Iran's network drops issuing KEV_NEGOTIATE_ERROR on an iPad iOS 8 Openvpn Connect App. This does work outside Iran.
Deep packet inspection perhaps? I guess they look into the pattern of encrypted packets transfered on port 443 and realized that it's not a SSL and kill the connection. Do you have any plan to add support for Obfsproxy and/or stunnel in your iOS app?
Deep packet inspection perhaps? I guess they look into the pattern of encrypted packets transfered on port 443 and realized that it's not a SSL and kill the connection. Do you have any plan to add support for Obfsproxy and/or stunnel in your iOS app?