OpenVPN problem with IOS

klnycfpv · March 6, 2025, 3:05pm

Man this stink… After upgrade now my VPN client no longer work

Is there a way to download older version?

furballsupreme · March 6, 2025, 3:05pm

No.

What is the problem, do you have any error message that provides a clue as to what is wrong with your configuration?

Anonymous · March 6, 2025, 3:05pm

You will have to remove those lines from the configuration. Also may have to remove the cbc cipher. The errors are lines that have to be deleted from configuration.

klnycfpv · March 6, 2025, 3:05pm

ok i got this log file.

Nov 06, 2024, 18:57:16] 2 [data-ciphers] [AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305:AES-256-CBC]

[Nov 06, 2024, 18:57:16] 3 [data-ciphers-fallback] [AES-256-CBC]

[Nov 06, 2024, 18:57:16] 4 [explicit-exit-notify]

[Nov 06, 2024, 18:57:16] EVENT: UNUSED_OPTIONS_ERROR UNKNOWN/UNSUPPORTED OPTIONS: VPN
Unsupported option (ignored): persist-tun,persist-key,data-ciphers,data-ciphers-fallback,explicit-exit-notify
[ERR]

[Nov 06, 2024, 18:57:16] EVENT: CORE_THREAD_DONE

[Nov 06, 2024, 18:57:16] EVENT: DISCONNECT_PENDING

[Nov 06, 2024, 18:57:16] Raw stats on disconnect:

[Nov 06, 2024, 18:57:16] Performance stats on disconnect:
CPU usage (microseconds): 31570
Network bytes per CPU second: 0
Tunnel bytes per CPU second: 0

klnycfpv · March 6, 2025, 3:05pm

dev tun

persist-tun

persist-key

data-ciphers AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305:AES-256-OFB

data-ciphers-fallback AES-256-OFB

auth SHA256

tls-client

client

resolv-retry infinite

remote xx.xx.xxxx.xx 1196 udp4

nobind

verify-x509-name “vpn1” name

auth-user-pass

remote-cert-tls server

explicit-exit-notify

TUNNEL

-----BEGIN CERTIFICATE-----

REMOVED ALL THOSE #S

-----END CERTIFICATE-----

-----BEGIN CERTIFICATE-----

REMOVED ALL THOSE #S

-----END CERTIFICATE-----

-----BEGIN PRIVATE KEY-----

REMOVED ALL THOSE #S

-----END PRIVATE KEY-----

key-direction 1

#

# 2048 bit OpenVPN static key

#

-----BEGIN OpenVPN Static key V1-----

I removed all those #s

-----END OpenVPN Static key V1-----

furballsupreme · March 6, 2025, 3:05pm

Is there anything before that bit? It seems this is only the tail end of it

Anonymous · March 6, 2025, 3:05pm

dev tun

cipher AES-256-GCM

auth SHA256

tls-client

client

resolv-retry infinite

remote xx.xx.xxxx.xx 1196 udp4

nobind

verify-x509-name “vpn1” name

auth-user-pass

remote-cert-tls server

TUNNEL

-----BEGIN CERTIFICATE-----

REMOVED ALL THOSE #S

-----END CERTIFICATE-----

-----BEGIN CERTIFICATE-----

REMOVED ALL THOSE #S

-----END CERTIFICATE-----

-----BEGIN PRIVATE KEY-----

REMOVED ALL THOSE #S

-----END PRIVATE KEY-----

key-direction 1

#

# 2048 bit OpenVPN static key

#

-----BEGIN OpenVPN Static key V1-----

I removed all those #s

-----END OpenVPN Static key V1-----