I’m connecting my MacBook to our OpenVPN endpoint using the AWS VPN Client and it works fine.
But if I try using another OpenVPN client, such as TunnelBlik or on my Asus router, the connection is flaky and I get kicked out frequently. It is pretty much random and it’s not a timeout for a lack of activity. I can be in an active SSH session and be kicked out right in the middle of a script running.
I had no problem when we were running our own OpenVPN server on an EC2 instance. Only since we started using AWS’ own VPN endpoint.
Has anyone else experienced this?
For my mac users we either use the openvpn client or aws client VPN. Is ther e reason you do not want to use the normal openvpn client? The aws client is super basic but it works well on the macs.
I haven’t had any problems with Tunnelblick, I sometimes even forget the VPN connection on for all day whoops, but no problems at all. Maybe it is some configuration issue?
TunnelBlick has worked fine to our AWS instance running OpenVPN since around 2010 or so. It has literally worked perfectly even though it is difficult to configure.
I’m hoping to keep a permanent connection through my router so other devices at home (like my iPad) can also access ressources on AWS simultaneously. Also for some reason, using a VPN client breaks that feature that let me take phone calls from my MacBook without having to pick my iPhone.
Sounds like it could be a configuration. The only way to get your entire network on the vpn would be to set up a site to site vpn on AWS. Your firewall/router would need to support this though.
If you want to keep a permanent connection I would use a site to site with AWS. Your firewall/router would need to support that though.
That’s what I’m trying to do and that is unstable. Maybe need a better router (it’s a fairly old Asus device).
So then you are not using a client vpn. Yea it could be the router. Do you have two tunnels set up? This is where redundancy comes into play with AWS. It allows for 2 if one goes down.
I am using the AWS client because the tunnel on the router is just too unstable to be productive. I suppose I need something better than a consumer-grade router.
Yea most likely. I didn’t even know those consumer ones came with a site to site.