search

schwabe / ics-openvpn

OpenVPN for Android
3.31k stars 1.2k forks source link

Unclear connection problem #1616

Closed constambeys closed 1 year ago

constambeys commented 1 year ago

General information

  1. Android Version 9
  2. Philips / Android TV
  3. OpenVPN for Android 0.7.43

When I connect I loose internet/network connection of the TV.

However when I change from DHCP to Static IP back to DHCP I get connected !

I guess something is wrong with the assign IP/routes !

schwabe commented 1 year ago

This not enough enough to do anything. You need to give me more information like log files and so on

constambeys commented 1 year ago

The server is running on OpenWRT 22.03 openvpn-openssl | 2.5.7-3

/etc/openvpn/server.conf

user nobody
group nogroup
dev tun
port 1194
proto udp
server 192.168.8.0 255.255.255.0
topology subnet
client-to-client
keepalive 10 60
persist-tun
persist-key
push "dhcp-option DNS 192.168.8.1"
push "dhcp-option DOMAIN lan"
push "redirect-gateway def1"
push "persist-tun"
push "persist-key"
<dh>
-----BEGIN DH PARAMETERS-----
...
-----END DH PARAMETERS-----
</dh>
<tls-crypt-v2>
-----BEGIN OpenVPN tls-crypt-v2 server key-----
...
-----END OpenVPN tls-crypt-v2 server key-----
</tls-crypt-v2>
<key>
-----BEGIN PRIVATE KEY-----
...
-----END PRIVATE KEY-----
</key>
<cert>
-----BEGIN CERTIFICATE-----
...
-----END CERTIFICATE-----
</cert>
<ca>
-----BEGIN CERTIFICATE-----
...
-----END CERTIFICATE-----
</ca>
constambeys commented 1 year ago

The imported ovpn file is

/etc/openvpn/client.ovpn

user nobody
group nogroup
dev tun
nobind
client
remote X.X.X.X 1194 udp
auth-nocache
remote-cert-tls server
<tls-crypt-v2>
-----BEGIN OpenVPN tls-crypt-v2 client key-----
...
-----END OpenVPN tls-crypt-v2 client key-----
</tls-crypt-v2>
<key>
-----BEGIN PRIVATE KEY-----
...
-----END PRIVATE KEY-----
</key>
<cert>
-----BEGIN CERTIFICATE-----
...
-----END CERTIFICATE-----
</cert>
<ca>
-----BEGIN CERTIFICATE-----
...
-----END CERTIFICATE-----
</ca>
schwabe commented 1 year ago

The configuration files are nice but logs files are the real thing needed to get any insight.

constambeys commented 1 year ago

I copied the log file. Hope it helps !

2023-06-05 08_28_12 official build 0.7..txt

schwabe commented 1 year ago

So this looks like your Android version does somehow really screw up routing on your phone. You can try to explicitly add the IP of your Server as excluded route and see if that helps.

constambeys commented 1 year ago

My friend I found the issue 😁 An app is interfering with the VPN 😅 If I select 《Allow apps to bypass the VPN》and select the "Google Services Framework" app it works !!!