Dear openvpn users, we've been running an openVPN setup with, among others, android and iOS clients, for several years now.
This involves the usual easy-rsa generated client certificate setup, with an .ovpn file and .p12 key file distributed to our users. Recently, this kind of breaks. For Android, connections that were working before, timed out. A reinstall of the .p12 file was able to make it work again. Meanwhile, iOS clients (e.g. iOS 11.2.1, 11.2.2, openVPN app 1.2.5) are no longer able to connect at all. The .p12 certificate looks installed in the keystore, and can be reinstalled properly, but selecting the certificate says "No certificates are present in the Ke..." The server side did not change at all, recently. We already tried signing the keys with sha256 instead of md5, also tried with a freshly created client key, all to no avail. See below for the client config file we use (IPs and ca content redacted) Basic question: is this a known issue, does it happen to others, too, any idea how to get it to work again? (chromeos and macOS clients, so far, keep working fine with the same setup) best regards Patrick proto udp remote x.x.x.x 1194 remote y.y.y.y 1194 nobind pull tls-client verify-x509-name server-ours name ns-cert-type server verb 3 daemon cipher AES-256-CBC comp-lzo keepalive 5 15 <ca> -----BEGIN CERTIFICATE----- ... -----END CERTIFICATE----- </ca> ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
