I have OpenVPN clients running on Carambola2 devices [1] and when I use 3g/umts stick or wired ethernet then OpenVPN clients establish vpn tunnel every time.
When wifi is used then OpenVPN client fails due to TLS timeout if wifi signal is not perfect 10/10! Logs show LS timeouts after 60 seconds.
If carambola device (clients) are in same room as AP then OpenVPN gets establishes without any issues!
When carambola device in other room (two walls between it and AP, signal shows around -80dBm), there are no dropped pings, but OpenVPN fails after 60 seconds because due to TLS timeout.
I tried setting "tls-timeout 120" on clients and on server but these is still TLS timeout after 60 seconds, what am I doing wrong?
Should I switch to tcp instead of udp on OpenVPN server? Are there some other tweaks I can try?
I have read that sometimes less powerful devices (smartphons and small home wifi routers) or while using very slow connection (GPRS in area with low signal coverage) cause TLS timeout issues during TLS handshake, because a timeout occurs before clients are done calculating the respective session keys.
But why do these devices establish OpenVPN connection without TLS timeout when wifi signal is ideal 10/10?
You should try using
reneg-sec 0
.Just sayin.