Hello
I’m traying to use openvpn on a samsung galaxy tab a (sm-t280), android 5.1.1 to connect to my office freepbx.
Openvpn connect ok, I can see the connection on the untangle server, If I use Net Analyzer or Termux to ping to the freepbx that is in the office the result is possitive.
The problem is trying to connect by ssh or when zoiper try to reaches the server.
Openvpn 3.0.7
Untangle 14.2.0
Nat OpenVPN Traffic = Not checked (I try by default on yes, same result)
Groups
Full tunnel = NO (I try by on yes, same result)
Push DNS = NO (I try by default on yes, same result)
I am using only IPs, so don’t need DNS….
I have been tried a lot of configurations, but not work.
I don’t know where to find the real problem, seems to be on response time.
Openvpn log from android:
16:15:03.906 -- ----- OpenVPN Start -----
16:15:03.914 -- EVENT: CORE_THREAD_ACTIVE
16:15:03.938 -- OpenVPN core 3.git::728733ae:Release android armv7a thumb2 32-bit PT_PROXY built on Aug 14 2019 14:13:59
16:15:03.956 -- Frame=512/2048/512 mssfix-ctrl=1250
16:15:04.009 -- EVENT: RESOLVE
16:15:04.153 -- Contacting HIDDEN:1194 via UDP
16:15:04.155 -- EVENT: WAIT
16:15:04.180 -- Connecting to HIDDEN:
16:15:04.303 -- EVENT: CONNECTING
16:15:04.325 -- Tunnel Options:V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-client
16:15:04.327 -- Creds: UsernameEmpty/PasswordEmpty
16:15:04.329 -- Peer Info:
IV_GUI_VER=OC30Android
IV_VER=3.git::728733ae:Release
IV_PLAT=android
IV_LZO_STUB=1
IV_COMP_STUB=1
IV_AUTO_SESS=1
16:15:04.544 -- VERIFY OK : depth=1
cert. version : 3
serial number : 87:BB:BB:1D:35:EA:21:0E
issuer name : CN=certificateAuthority, C=CO, ST=ST, L=L, O=O, OU=OU, dnQualifier=
subject name : CN=certificateAuthority, C=CO, ST=ST, L=L, O=O, OU=OU, dnQualifier=
issued on : 2019-08-09 00:48:06
expires on : 2029-08-06 00:48:06
signed using : RSA with SHA-256
RSA key size : 4096 bits
basic constraints : CA=true
16:15:04.547 -- VERIFY OK : depth=0
cert. version : 3
serial number : 51:65:46:88
issuer name : CN=certificateAuthority, C=CO, ST=ST, L=L, O=O, OU=OU, dnQualifier=
subject name : C=CO, ST=ST, O=O, OU=OU, CN=server, dnQualifier=server
issued on : 2019-08-09 00:48:06
expires on : 2029-08-06 00:48:06
signed using : RSA with SHA-512
RSA key size : 4096 bits
basic constraints : CA=false
cert. type : SSL Server
key usage : Digital Signature, Key Encipherment
ext key usage : TLS Web Server Authentication
16:15:05.689 -- SSL Handshake: TLSv1.2/TLS-DHE-RSA-WITH-AES-
16:15:05.692 -- Session is ACTIVE
16:15:05.694 -- EVENT: GET_CONFIG
16:15:05.712 -- Sending PUSH_REQUEST to server...
16:15:05.854 -- OPTIONS:
0 [register-dns]
1 [route] [192.168.0.0] [255.255.255.0]
2 [route] [10.69.2.0] [255.255.255.0]
3 [route] [172.16.79.0] [255.255.255.0]
4 [topology] [net30]
5 [ping] [10]
6 [ping-restart] [60]
7 [ifconfig] [172.16.79.10] [172.16.79.9]
16:15:05.861 -- PROTOCOL OPTIONS:
cipher: AES-128-CBC
digest: SHA1
compress: COMP_STUB
peer ID: -1
16:15:05.863 -- EVENT: ASSIGN_IP
16:15:06.074 -- Connected via tun
16:15:06.081 -- LZO-ASYM init swap=0 asym=1
16:15:06.086 -- Comp-stub init swap=1
16:15:06.096 -- EVENT: CONNECTED info='hidden. (hidden) via /UDPv4 on tun/172.16.79.10/ gw=[172.16.79.9/]' trans=TO_CONNECTED
The client config:
client
keepalive 10 60
remote-cert-tls server
compress
dev tun
proto udp
port 1194
cipher AES-128-CBC
remote officeserver 1194 # public address
Android + Untangle + Zoiper = time out
-
shakrat
- OpenVpn Newbie
- Posts: 2
- Joined: Fri Oct 04, 2019 10:19 pm