Menu
What's new
By:
Filters Better Search

VPN - test cases - client to site, site to site.

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

R

RemoveByFriction

New Around Here
Dear users of forum,

Have you met with the OpenVPN configuration, which will allow you to switch automatically
conneciont from the udp tunnel to tcp?
I note that I do not mean to make that with OpenVPN Access Server.
The issue is that I would like to have such a configuration applies to restrictive firewalls.
The idea is that if it is impossible to make vpn tunel using UDP,
automatically the client try to create a connection on TCP port 443.
 
Last edited:
You can use the remote directive to define additional possible OpenVPN servers you're interested in.

Code: 
remote 199.199.199.199 udp 5353
remote 188.188.188.188 tcp 443
...

Just add it to the Custom Config field. The OpenVPN client will traverse the list, in order, until it gets a connection. If that fails, it returns to the top and tries again. Ad infinitum.

But this only works if those servers are configured w/ the same CA cert, client certs and keys, etc. Sometimes that's the case (e.g. PIA), sometimes NOT (e.g., NordVPN).
 
eibgrad said:
You can use the remote directive to define additional possible OpenVPN servers you're interested in.

Code: 
remote 199.199.199.199 udp 5353
remote 188.188.188.188 tcp 443
...

Just add it to the Custom Config field. The OpenVPN client will traverse the list, in order, until it gets a connection. If that fails, it returns to the top and tries again. Ad infinitum.

But this only works if those servers are configured w/ the same CA cert, client certs and keys, etc. Sometimes that's the case (e.g. PIA), sometimes NOT (e.g., NordVPN).
Click to expand...


I am assuming the 199.xxx.....are IP’s of the VPN servers.

Also if there are more VPN servers available (and provided that CA certs/keys/etc are the same)-could your Custom Configuration lines be modified to this?


Code: 
 remote 103.86.96.100 udp 1194
remote 103.86.96.100 tcp 443
remote 103.86.99.100 udp 1194
remote 103.86.99.100 tcp 443


Sent from my iPhone using Tapatalk
 
Additional tip.

If you add the server-poll-timeout directive to Custom Config as well, then you can control how long to wait for a response from the current remote before moving on to the next one.

Code: 
server-poll-timeout 10

In the above example, I've instructed the OpenVPN client to only wait 10 secs before moving on to the next remote. This can very handy given the OpenVPN client might wait as much as a minute (by default) before giving up on the current remote.
 
You must log in or register to reply here.

Similar threads

johndoe85
VPN site to site with additional VPN client to hide IP
Replies
14
Views
1K
johndoe85
johndoe85
G
Using VPN Director to route only torrent traffic through VPN
Replies
8
Views
410
eibgrad
eibgrad
F
Site To Site VPN between Debian VM and AsusWRT-Merlin router, no routes exists
Replies
2
Views
1K
Freewill0592
F
B
IPv6-only site-to-site setup with Wireguard, and how to handle IPv4
Replies
1
Views
2K
drinkingbird
drinkingbird
T
Wireguard Client VPN not using DNS
Replies
14
Views
687
Tom Jo-Jo Junior Shabadoo
Tom Jo-Jo Junior Shabadoo
Similar threads
Thread starter Title Forum Replies Date
Paul Short Frustrating VPN Double NAT Issues VPN 5
S One website cannot be accessed when VPN is on VPN 7
L VPN service question VPN 9
B VPN router with Wifi to internet router VPN 7
gdgross More VPN server questions VPN 8
pusb87 Which VPN Providers provide Wireguard config files VPN 7
J CVE-2024-3661 Attackers can use TunnelVision to snoop on users’ VPN traffic. VPN 1
gdgross Setting up VPN server (router?) for offsite access VPN 13
C Instant Guard IPsec VPN Log Showing Regular Access Attempts VPN 3
A Best way to set up vpn on router for gaming? VPN 13

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 526 (members: 20, guests: 506)
Top