OpenVPN on IDNet

Started by benjanyan, Nov 05, 2017, 11:08:07

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

benjanyan

Nov 05, 2017, 11:08:07
Hi all. Not long signed up here and fairly new to IDNet.

I'm having issues maintaining a VPN connection to a server in the Netherlands. Specifically, it seems to stall randomly so there's no connectivity all of a sudden. This seems to be specific to UDP as TCP seems to work okay. Don't want to send you to sleep with too many details as my question is a little more simple.

Is there anyone here on IDNet successfully running a UDP OpenVPN connection? If there is, it'd be another step towards crossing another one off this massive list! :bawl:

Cheers.

Simon

#1
Nov 05, 2017, 11:53:56
Hi, and :welc:

Have you discussed this with the IDNet support team at all?

I'm afraid I'm not in a position to offer any advice, but hopefully somebody will be along in due course that may be more helpful.
Simon.
--
This post reflects my own views, opinions and experience, not those of IDNet.

benjanyan

#2
Nov 05, 2017, 12:20:40
Thanks, Simon.

Not yet, there's a few other things I'd rather rule out first. :angel: My newish Asus DSL-AC68U is one of them (I was using the dreaded VM SuperHub2 before!)

nowster

#3
Nov 05, 2017, 12:30:02
OpenVPN works fine on iDNet. I've been using it for 8 years.

You might need to constrain the MSS/MTU values.

eg.

fragment 1300
mssfix

benjanyan

#4
Nov 05, 2017, 13:58:26
Thanks, nowster. That's good to hear.

I tried various mssfix values already but looking at the docs, that only influences TCP packets inside the VPN. I'll have a play around with fragment too and see what happens.

In the meantime, I've set another server up in the UK (I've got VPS coming out my ears) and that seems to work absolutely fine, frustratingly. No tweaks necessary.

benjanyan

#5
Nov 06, 2017, 19:05:31
Think I've made progress. :blush:

The seemingly random stalling I was seeing was due to duplicate IP addresses on the VPN side (there's a couple static ones and bunch of dynamic). :facepalm:
It came to light when I found I could ping the client from the VPN server but not vica versa. I tried to SSH to it from the VPN server and discovered it wasn't the machine I expected. D'oh.

With fragment 1400 and mssfix, it's been fairly stable so far. I was experiencing the odd drop and stall before the config changes causing the above. I just assumed it was the same issue that'd gotten worse!
Print
Go Up Pages1
User actions