OpenVPN Support Forum

So im trying my regular ovpn profile seams to connect but no traffic returns to my phone once connected.
The vpn connection still alive when leaving the app tough.

On the other hand, connecting via OpenVPN Private Tunnel works flawlessly.

VPN: Adaptative (also tried UDP and TCP)
IPv6: No preference (also tried ipv4 only)
Compression: Full
TLS :profile default
Connect via :Any network
Network state detection :Active
Layer 2 reachability : enable

Do you have any idea ?

Here is the log file (patched to remove my info):

2018-34-20 10:34:05 ----- OpenVPN Start -----
OpenVPN core 3.2 ios arm64 64-bit PT_PROXY built on Aug 14 2018 08:01:25
2018-34-20 10:34:05 Frame=512/2048/512 mssfix-ctrl=1250
2018-34-20 10:34:05 UNUSED OPTIONS
5 [ncp-ciphers] [AES-256-GCM]
14 [resolv-retry] [infinite]
15 [push] [redirect-gateway local def1]
16 [nobind]
2018-34-20 10:34:05 EVENT: RESOLVE
2018-34-20 10:34:05 Contacting [zzzz:zzzz:zz::zzzz:zzzz]:1194/UDP via UDP
2018-34-20 10:34:05 EVENT: WAIT
2018-34-20 10:34:05 Connecting to [zzzz.mine.nu]:1194 (zzzz:zzzz:zz::zzzz:zzzz) via UDPv6
2018-34-20 10:34:05 EVENT: CONNECTING
2018-34-20 10:34:05 Tunnel Options:V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client
2018-34-20 10:34:05 Creds: Username/Password
2018-34-20 10:34:05 Peer Info:
IV_GUI_VER=net.openvpn.connect.ios 3.0.0-693
IV_VER=3.2
IV_PLAT=ios
IV_LZ4=1
IV_IPv6=0
IV_BS64DL=1
2018-34-20 10:34:05 VERIFY OK : depth=0
cert. version : 3
serial number : 01
issuer name : zzz
subject name : zzz
issued on : 2017-06-30 18:57:53
expires on : 2027-06-28 18:57:53
signed using : RSA with SHA-256
RSA key size : 1024 bits
basic constraints : CA=false
cert. type : SSL Server
key usage : Digital Signature, Key Encipherment
ext key usage : TLS Web Server Authentication
2018-34-20 10:34:06 SSL Handshake: TLSv1.2/TLS-DHE-RSA-WITH-AES-256-CBC-SHA
2018-34-20 10:34:06 Session is ACTIVE
2018-34-20 10:34:06 EVENT: GET_CONFIG
2018-34-20 10:34:06 Sending PUSH_REQUEST to server...
2018-34-20 10:34:06 OPTIONS:
0 [route] [10.32.50.0] [255.255.255.0] [vpn_gateway] [500]
1 [dhcp-option] [DNS] [10.32.50.1]
2 [redirect-gateway] [def1]
3 [dhcp-option] [DOMAIN] [zzz]
4 [redirect-gateway] [def1]
5 [route-gateway] [10.8.0.1]
6 [topology] [subnet]
7 [ping] [15]
8 [ping-restart] [60]
9 [ifconfig] [10.8.0.2] [255.255.255.0]
10 [block-ipv6]
2018-34-20 10:34:06 PROTOCOL OPTIONS:
cipher: BF-CBC
digest: SHA1
compress: LZ4
peer ID: -1
2018-34-20 10:34:06 EVENT: ASSIGN_IP
2018-34-20 10:34:06 NIP: preparing TUN network settings
2018-34-20 10:34:06 NIP: init TUN network settings with endpoint: zzzz:zzzz:zz::zzzz:zzzz
2018-34-20 10:34:06 NIP: adding IPv4 address to network settings 10.8.0.2/255.255.255.0
2018-34-20 10:34:06 NIP: adding (included) IPv4 route 10.8.0.0/24
2018-34-20 10:34:06 NIP: adding (included) IPv4 route 10.32.50.0/24
2018-34-20 10:34:06 NIP: redirecting all IPv4 traffic to TUN interface
2018-34-20 10:34:06 NIP: adding DNS 10.32.50.1
2018-34-20 10:34:06 NIP: adding match domain zzz
2018-34-20 10:34:06 NIP: blocking all IPv6 traffic
2018-34-20 10:34:06 Connected via NetworkExtensionTUN
2018-34-20 10:34:06 Per-Key Data Limit: 48000000/48000000
2018-34-20 10:34:06 LZ4 init asym=0
2018-34-20 10:34:06 EVENT: CONNECTED zzz@zzz.mine.nu:1194 (zzzz:zzzz:zz::zzzz:zzzz) via /UDPv6 on NetworkExtensionTUN/10.8.0.2/ gw=[/]
2018-35-20 10:35:07 Session invalidated: KEEPALIVE_TIMEOUT
2018-35-20 10:35:07 Client terminated, restarting in 2000 ms...
2018-35-20 10:35:09 EVENT: RECONNECTING
2018-35-20 10:35:09 Contacting [zzzz:zzzz:zz::zzzz:zzzz]:1194/UDP via UDP
2018-35-20 10:35:09 EVENT: WAIT
2018-35-20 10:35:09 Connecting to [zzz.mine.nu]:1194 (zzzz:zzzz:zz::zzzz:zzzz) via UDPv6
2018-35-20 10:35:09 EVENT: CONNECTING
2018-35-20 10:35:09 Tunnel Options:V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client
2018-35-20 10:35:09 Creds: Username/Password
2018-35-20 10:35:09 Peer Info:
IV_GUI_VER=net.openvpn.connect.ios 3.0.0-693
IV_VER=3.2
IV_PLAT=ios
IV_LZ4=1
IV_IPv6=0
IV_BS64DL=1
2018-35-20 10:35:09 VERIFY OK : depth=0
cert. version : 3
serial number : 01
issuer name : zzz
subject name : zzz
issued on : 2017-06-30 18:57:53
expires on : 2027-06-28 18:57:53
signed using : RSA with SHA-256
RSA key size : 1024 bits
basic constraints : CA=false
cert. type : SSL Server
key usage : Digital Signature, Key Encipherment
ext key usage : TLS Web Server Authentication
2018-35-20 10:35:09 SSL Handshake: TLSv1.2/TLS-DHE-RSA-WITH-AES-256-CBC-SHA
2018-35-20 10:35:09 Session is ACTIVE
2018-35-20 10:35:09 EVENT: GET_CONFIG
2018-35-20 10:35:09 Sending PUSH_REQUEST to server...
2018-35-20 10:35:10 OPTIONS:
0 [route] [10.32.50.0] [255.255.255.0] [vpn_gateway] [500]
1 [dhcp-option] [DNS] [10.32.50.1]
2 [redirect-gateway] [def1]
3 [dhcp-option] [DOMAIN] [zzz]
4 [redirect-gateway] [def1]
5 [route-gateway] [10.8.0.1]
6 [topology] [subnet]
7 [ping] [15]
8 [ping-restart] [60]
9 [ifconfig] [10.8.0.3] [255.255.255.0]
10 [block-ipv6]
2018-35-20 10:35:10 PROTOCOL OPTIONS:
cipher: BF-CBC
digest: SHA1
compress: LZ4
peer ID: -1
2018-35-20 10:35:10 EVENT: ASSIGN_IP
2018-35-20 10:35:10 NIP: preparing TUN network settings
2018-35-20 10:35:10 NIP: init TUN network settings with endpoint: zzzz:zzzz:zz::zzzz:zzzz
2018-35-20 10:35:10 NIP: adding IPv4 address to network settings 10.8.0.3/255.255.255.0
2018-35-20 10:35:10 NIP: adding (included) IPv4 route 10.8.0.0/24
2018-35-20 10:35:10 NIP: adding (included) IPv4 route 10.32.50.0/24
2018-35-20 10:35:10 NIP: redirecting all IPv4 traffic to TUN interface
2018-35-20 10:35:10 NIP: adding DNS 10.32.50.1
2018-35-20 10:35:10 NIP: adding match domain zzz
2018-35-20 10:35:10 NIP: blocking all IPv6 traffic
2018-35-20 10:35:10 Connected via NetworkExtensionTUN
2018-35-20 10:35:10 Per-Key Data Limit: 48000000/48000000
2018-35-20 10:35:10 LZ4 init asym=0
2018-35-20 10:35:10 EVENT: CONNECTED zzz@zzz.mine.nu:1194 (zzzz:zzzz:zz::zzzz:zzzz) via /UDPv6 on NetworkExtensionTUN/10.8.0.3/ gw=[/]
2018-36-20 10:36:38 1
​

mrdindon wrote: ↑

Mon Aug 20, 2018 3:04 pm

So im trying my regular ovpn profile seams to connect but no traffic returns to my phone once connected.
The vpn connection still alive when leaving the app tough.

On the other hand, connecting via OpenVPN Private Tunnel works flawlessly.

So what is your regular ovpn profile ?

Here it is. pretty standard.

client
dev tun
proto udp
remote zzz.mine.nu 1194
float
ncp-ciphers AES-256-GCM
auth SHA1
compress lz4
keepalive 15 60
auth-user-pass
remote-cert-tls server
<ca>
-----BEGIN CERTIFICATE-----
ZZZ
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
ZZZ
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
ZZZ
-----END PRIVATE KEY-----
</key>
resolv-retry infinite
push "redirect-gateway local def1"
nobind

We need more information, please see:
HOWTO: Request Help ! {2}

Sorry, my bad. I didn't realized that the issues happend after upgrading my router firmware.
This thread can be deleted / closed plz.