thanks to you all, that line was the problem.
withput it fallback works fine.
> On 21 Oct 2015, at 18:32, Selva Nair wrote:
>
>
> On Wed, Oct 21, 2015 at 9:46 AM, Stefan Szabo wrote:
> hi,
>
> without proto tcp declaration it doesnt try over tcp, all that is doing is
> udp.
>
> if the fi
On Wed, Oct 21, 2015 at 5:39 PM, wrote:
> Results you could have SHARED in the FIRST place ..
>
Go through the thread carefully -- I was the first to point out the
conflict between persist-ip and multiple remotes. I tested this with 2.3.8
this morning seeing the OP's post, immediately replied t
- Original Message -
From: "Selva Nair"
To: "Debbie Tent"
Cc:
Sent: Wednesday, October 21, 2015 10:23 PM
Subject: Re: [Openvpn-users] client config fallback from 1194 udp to 80 tcp
> On Wed, Oct 21, 2015 at 5:11 PM, wrote:
>
>>
>>>
>&g
On Wed, Oct 21, 2015 at 5:11 PM, wrote:
>
>>
>>> >> Why? Because of this line in the config:
>>> >>
>>> >> persist-remote-ip
>>>
>>> >> That will keep trying X:1194 only with whatever protocol is defined
>>> >> before
>>> >> those lines (or udp by default), if persist-remote-ip is also >>
>>> spe
- Original Message -
From: "Selva Nair"
To: "Gert Doering" ; "Debbie Tent"
Cc:
Sent: Wednesday, October 21, 2015 9:37 PM
Subject: Re: [Openvpn-users] client config fallback from 1194 udp to 80 tcp
> Hi,
>
> On Wed, Oct 21, 2015 at 4:10
Hi Folks
sorry to chime in late (and unsolicited)
Am 21.10.2015 um 22:48 schrieb Gert Doering:
> Hi,
>
> On Wed, Oct 21, 2015 at 04:37:57PM -0400, Selva Nair wrote:
>> If I'm not mistaken, persist-remote-ip pre-dates connection-list support.
>> With multiple options conditionally depending on ea
Hi,
On Wed, Oct 21, 2015 at 04:37:57PM -0400, Selva Nair wrote:
> If I'm not mistaken, persist-remote-ip pre-dates connection-list support.
> With multiple options conditionally depending on each other, such seemingly
> unexpected behaviour is no surprise.. Call it feature or a bug. The user
> ask
Hi,
On Wed, Oct 21, 2015 at 4:10 PM, wrote:
> - Original Message -
> From: "Gert Doering"
> To: "Selva Nair"
>
>
>
> >> Why? Because of this line in the config:
> >>
> >> persist-remote-ip
>
> >> That will keep trying X:1194 only with whatever protocol is defined
> >> before
> >> thos
Hi Gert,
Yes the problem remains (see below)..
On Wed, Oct 21, 2015 at 2:50 PM, Gert Doering wrote:
> hi,
> On Wed, Oct 21, 2015 at 01:14:26PM -0400, Selva Nair wrote:
> > Why? Because of this line in the config:
> >
> > persist-remote-ip
> [..]
> > That will keep trying X:1194 only with whatev
- Original Message -
From: "Gert Doering"
To: "Selva Nair"
Cc:
Sent: Wednesday, October 21, 2015 7:50 PM
Subject: Re: [Openvpn-users] client config fallback from 1194 udp to 80 tcp
>> Why? Because of this line in the config:
>>
>> persist-remo
hi,
On Wed, Oct 21, 2015 at 01:14:26PM -0400, Selva Nair wrote:
> Why? Because of this line in the config:
>
> persist-remote-ip
[..]
> That will keep trying X:1194 only with whatever protocol is defined before
> those lines (or udp by default), if persist-remote-ip is also specified.
> This is a
Hi,
In case my previous reply was not clear enough:
On Wed, Oct 21, 2015 at 3:21 AM, Stefan Szabo
wrote:
> config client:
>
>
> remote 62.231.75.XX
> port 80
> proto tcp wait 1
>
>
> remote 62.231.75.XX
> port 1194
> proto udp wait 10
>
>
This will cause the client to first try 62.231.75.
On Wed, Oct 21, 2015 at 9:46 AM, Stefan Szabo
wrote:
> hi,
>
> without proto tcp declaration it doesnt try over tcp, all that is doing is
> udp.
>
> if the first line is proto tcp, the first connection is over tcp, after
> that jumps over UDP.UDP is tried for 5 times after that it resets from the
Hi,
On Wed, Oct 21, 2015 at 04:46:34PM +0300, Stefan Szabo wrote:
> without proto tcp declaration it doesnt try over tcp, all that is doing is
> udp.
>
> if the first line is proto tcp, the first connection is over tcp, after that
> jumps over UDP.UDP is tried for 5 times after that it resets f
- Original Message -
From: "Stefan Szabo"
To:
Cc:
Sent: Wednesday, October 21, 2015 2:46 PM
Subject: Re: [Openvpn-users] client config fallback from 1194 udp to 80 tcp
> without proto tcp declaration it doesnt try over tcp, all that is doing is
> udp.
>>
t;
>
>
>
>
>
>> On 21 Oct 2015, at 15:42, debbie...@gmail.com wrote:
>>
>> Hi
>>
>> - Original Message - From: "Stefan Szabo"
>> To: "Gert Doering"
>> Cc:
>> Sent: Wednesday, October 21, 2015 8:21 AM
&g
zabo"
> To: "Gert Doering"
> Cc:
> Sent: Wednesday, October 21, 2015 8:21 AM
> Subject: Re: [Openvpn-users] client config fallback from 1194 udp to 80 tcp
>
>> openvpn server: OpenVPN 2.3.8 x86_64-redhat-linux-gnu
>> openvpn client: Tunnelblick 3.6beta10
Hi
- Original Message -
From: "Stefan Szabo"
To: "Gert Doering"
Cc:
Sent: Wednesday, October 21, 2015 8:21 AM
Subject: Re: [Openvpn-users] client config fallback from 1194 udp to 80 tcp
> openvpn server: OpenVPN 2.3.8 x86_64-redhat-linux-gnu
> openvpn cli
openvpn server: OpenVPN 2.3.8 x86_64-redhat-linux-gnu
openvpn client: Tunnelblick 3.6beta10 (build 4400)
config client:
remote 62.231.75.XX
port 80
proto tcp wait 1
remote 62.231.75.XX
port 1194
proto udp wait 10
client
dev tun
resolv-retry infinite
nobind
persist-key
persist-tun
persist-rem
Hi,
On Wed, Oct 21, 2015 at 08:42:57AM +0300, Stefan Szabo wrote:
> my question is why is not function the fallback mechanism from the cfg file,
> in my case the client continously use only port 80 tcp even if this port is
> DROP or REJECT with iptables on openvpn server.
This works for me :-)
yes i know all that, this is just for testing purpose, the final it wiil be udp
and then tcp.
good point about 80 tcp,and yes i will use 443 tcp wich is more likely not to
be intercepted
my question is why is not function the fallback mechanism from the cfg file, in
my case the client continou
On 21/10/15 09:49, debbie...@gmail.com wrote:
> NOTE: Just because you specify HTTP port 80 does not mean an intervening
> firewall is not capable of detecting a NON HTTP protocol and blocking you
> anyway.
I agree - in fact I'd suggest NEVER use tcp/80 and instead use tcp/443 -
as that's just as
t: Tuesday, October 20, 2015 8:58 PM
Subject: [Openvpn-users] client config fallback from 1194 udp to 80 tcp
>
>>
>> hi to you all,
>>
>>
>> does anyone knows how it’s possible to put in client config declarations
>> to fallback from udp port 1194 to tcp port 80?in
>
> hi to you all,
>
>
> does anyone knows how it’s possible to put in client config declarations to
> fallback from udp port 1194 to tcp port 80?in case i’m in a place where udp
> is filtered to be able to conect over tcp 80.
>
> i tried all the possibilities but nothing seems to work for m
24 matches
Mail list logo
