Hello!
I have configured an OpenVPN server on RT-N66U (FW:374.43) which has worked flawless for over a year. But now, from Android client I have to wait for around 30s or more to connect without changing anything on server site.
I would appreciate any help.
Here is my config information:
Server.config file
server1
dev tun
proto udp
remote all.dnsomatic.com 1194
float
cipher AES-128-CBC
comp-lzo adaptive
keepalive 15 60
key-direction 1
ns-cert-type server
resolv-retry infinite
nobind
RT-N66u log
Android Client log
Edit: Solved
I have configured an OpenVPN server on RT-N66U (FW:374.43) which has worked flawless for over a year. But now, from Android client I have to wait for around 30s or more to connect without changing anything on server site.
I would appreciate any help.
Here is my config information:
Server.config file
server1
dev tun
proto udp
remote all.dnsomatic.com 1194
float
cipher AES-128-CBC
comp-lzo adaptive
keepalive 15 60
key-direction 1
ns-cert-type server
resolv-retry infinite
nobind
RT-N66u log
Code:
Jul 27 21:49:27 openvpn[988]: 192.168.0.101:1194 TLS: Initial packet from [AF_INET]192.168.0.101:1194, sid=5f1384af cf8eda55
Jul 27 21:49:37 openvpn[988]: zz.yyy.211.162:13316 TLS: Initial packet from [AF_INET]zz.yyy.211.162:13316, sid=725d885e 65cb6680
Jul 27 21:49:39 openvpn[988]: zz.yyy.211.162:13316 VERIFY OK: depth=1, C=xzy, ST=xz, L=yyyy, O=OpenVPN, CN=xxxxasus, emailAddress=xxxxxxxxx@gmail.com
Jul 27 21:49:39 openvpn[988]: zz.yyy.211.162:13316 VERIFY OK: depth=0, C=xzy, ST=xz, O=OpenVPN, CN=client1, emailAddress=xxxxxxxxxxx@gmail.com
Jul 27 21:49:39 openvpn[988]: zz.yyy.211.162:13316 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Jul 27 21:49:39 openvpn[988]: zz.yyy.211.162:13316 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Jul 27 21:49:39 openvpn[988]: zz.yyy.211.162:13316 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Jul 27 21:49:39 openvpn[988]: zz.yyy.211.162:13316 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Jul 27 21:49:39 openvpn[988]: zz.yyy.211.162:13316 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Jul 27 21:49:39 openvpn[988]: zz.yyy.211.162:13316 [client1] Peer Connection Initiated with [AF_INET]zz.yyy.211.162:13316
Jul 27 21:49:39 openvpn[988]: client1/zz.yyy.211.162:13316 MULTI_sva: pool returned IPv4=dd.ff.0.6, IPv6=(Not enabled)
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 OPTIONS IMPORT: reading client specific options from: /tmp/openvpn_cc_344b0881c7ad292d8981c34fa6e53eb4.tmp
Jul 27 21:50:33 openvpn[988]: client1/xx.yyy.211.162:13316 MULTI: Learn: dd.ff.0.6 -> client1/xx.yyy.211.162:13316
Jul 27 21:50:33 openvpn[988]: client1/xx.yyy.211.162:13316 MULTI: primary virtual IP for client1/zz.yyy.211.162:13316: dd.ff.0.6
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 send_push_reply(): safe_cap=940
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 SENT CONTROL [client1]: 'PUSH_REPLY,route 192.168.0.0 255.255.255.0,dhcp-option DNS 192.168.0.1,redirect-gateway def1,route dd.ff.0.0 255.255.255.0,topology net30,ping 15,ping-restart 60,ifconfig dd.ff.0.6 10.66.0.5' (status=1)
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: 192.168.0.101:1194 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Jul 27 21:50:33 openvpn[988]: 192.168.0.101:1194 TLS Error: TLS handshake failed
Jul 27 21:50:33 openvpn[988]: 192.168.0.101:1194 SIGUSR1[soft,tls-error] received, client-instance restarting
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:51:56 openvpn[988]: client1/zz.yyy.211.162:13316 TLS: new session incoming connection from [AF_INET]zz.yyy.211.162:13316
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 VERIFY OK: depth=1, C=xyz, ST=xz, L=yyy, O=OpenVPN, CN=asus, emailAddress=xxxxxxxxxxxx@gmail.com
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 VERIFY OK: depth=0, C=xyz, ST=xz, O=OpenVPN, CN=client1, emailAddress=xxxxxxxxxx@gmail.com
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 TLS: move_session: dest=TM_ACTIVE src=TM_UNTRUSTED reinit_src=1
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 TLS: tls_multi_process: untrusted session promoted to semi-trusted
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Jul 27 21:52:00 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:52:00 openvpn[988]: client1/zz.yyy.211.162:13316 send_push_reply(): safe_cap=940
Jul 27 21:52:00 openvpn[988]: client1/zz.yyy.211.162:13316 SENT CONTROL [client1]: 'PUSH_REPLY,route 192.168.0.0 255.255.255.0,dhcp-option DNS 192.168.0.1,redirect-gateway def1,route dd.ff.0.0 255.255.255.0,topology net30,ping 15,ping-restart 60,ifconfig dd.ff.0.6 dd.ff.0.5' (status=1)
Android Client log
Code:
OpenVPN ROUTE6: OpenVPN needs a gateway parameter for a --route-ipv6 option and no default was specified by either --route-ipv6-gateway or --ifconfig options-ipv6 options
OpenVPN ROUTE: failed to parse/resolve route for host/network: ::/0
Edit: Solved
Last edited: