Nope and btw OpenVPN does not care about the CRL unless you specifically define it in the config. I even use the same CA, client cert as on the other openvpn node on this host on other port so even that issue is excluded.
The fact that it worked for years and now misbehaves with no reason the only logical thing is that the other isp where that node connects from breaks the connection. I have tried to lower the tun mtu to all the way down to 1200 does not help at all as it does not even get to the point to establish any tunnel :/ Sent with Proton Mail secure email. On Friday, May 17th, 2024 at 2:01 PM, Jochen Bern <jochen.b...@binect.de> wrote: > On 17.05.24 15:49, shadowbladeee via Openvpn-users wrote: > > > Time is correct on the machines, certs expire in 2049. > > > Any CRLs that might have expired? > > I note that the tcpdump shows only quite small packets. MTU issues > that could lead to (persistent) loss of large ones from the other end? > > Kind regards, > -- > Jochen Bern > Systemingenieur > > Binect GmbH > _______________________________________________ > Openvpn-users mailing list > Openvpn-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/openvpn-users _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
