It is currently 16.12.2017 12:47


All times are UTC




Post new topic Reply to topic  [ 1 post ] 
Author Message
 Post subject: Problem accessing server resources
PostPosted: 30.09.2014 09:32 
DES
DES

Joined: 30.09.2014 09:31
Posts: 1
Hello everyone!

I have installed and configured OpenVPN on my server. It uses TUN interface and allows many clients connecting to it at the same time. I will post config below. Actually there are 2 clients connecting. One of them is configured on router powered by OpenWrt, however I have also tried native OpenVPN client on Gentoo Linux and Windows 7 behind that router. All of them working correctly. Internet is that location is based on ADSL2+.

Second client has 2 internet connections: UMTS and ETTH. When it connects to server using UMTS, everything is working correctly, but slow :P When it connects via ETTH, client successfully establishes VPN connection. Ping is working between server and client. But when he tries to access any resources on the server through VPN, it fails sometimes, depending on data. If it is small website - it loads correctly and fast. But when trying to download 4MB file, it stucks everytime on 16,996KB. After longer while transfer interrupts.
This client uses Windows XP, however we also tried booting Ubuntu Live and the conclusion is that OS makes no difference.

I have already spent 3 days investigating this issue. Previously I have been using TAP interface, but finally migrated to TUN and it makes no difference. Tcpdump showed me that bigger websites got truncated and there are many duplicated packets sent from server to client.

Server configuration:
Code:
dev tun0
proto udp
port XXXX
mode server
tls-server
cipher AES-128-CBC
dh /path/to/dh.pem
ca /path/to/ca.crt
cert /path/to/cert.crt
key /path/to/key.key
tls-auth /path/to/tls.key 0
status /path/to/status.log
log /path/to/openvpn.log
server 172.18.0.0 255.255.255.0
keepalive 30 120
user openvpn
group openvpn
max-clients 3
comp-lzo
persist-key
persist-tun
verb 4


Affected client config:
Code:
client
dev tun
proto udp
remote AAA.BBB.CCC.DDD
port XXXX
cipher AES-128-CBC
ca ca.crt
cert cert.crt​
key key.key​
tls-auth tls.key 1
comp-lzo
persist-key
persist-tun
verb 4
keepalive 30 120


Do you have any ideas what might be wrong? What else can I check and what server configration might help?
I already tried playing with tun-mtu and mssfix options on both side, lowering MTU even to 1400 but it didn't help.

Thank you in advace for help!


Top
Offline Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 1 post ]  Moderator: Moderators

All times are UTC


Who is online

Users browsing this forum: No registered users and 2 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
cron
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
Theme created StylerBB.net