VPN problem

[dryfly]

I'm running Open VPN on a Asus RT-86U router, and using Hikvision IVMS-4500 software for remote viewing. I've recently developed an issue where I cannot make a VPN connection on my iPhone. While at home I can however view the cameras when connected to my network.

It's been a couple of years since I set up this VPN so I'm not real sharp on it. Before I have to completely start over can anyone give me some suggestions as to where I might look to get Open VPN remote connection back up and running.

Thanks

 

[SpacemanSpiff]

I'm running Open VPN on a Asus RT-86U router, and using Hikvision IVMS-4500 software for remote viewing. I've recently developed an issue where I cannot make a VPN connection on my iPhone. While at home I can however view the cameras when connected to my network.

It's been a couple of years since I set up this VPN so I'm not real sharp on it. Before I have to completely start over can anyone give me some suggestions as to where I might look to get Open VPN remote connection back up and running.

Thanks

If you are troubleshooting from home... be sure to turn off iphone's WiFi before attempting to establish a VPN session.

Can you verify your router's WAN IP address matches the IP that your VPN client (iphone) is attempting to connect to. \

When is the last time you updated the router's firmware?

Edit: point your home computer's web browser to ipchicken dot com to easily obtain your WAN IP (public) address

 

[VorlonFrog]

I fought with an Asus RT-86U router years ago, finally got it working, then Asus changed how they did VPN / certs / keys. Never was able to make it work again. Recently switched to Tailscale and never looked back.

 

[pinecone]

If you are troubleshooting from home... be sure to turn off iphone's WiFi before attempting to establish a VPN session.

Can you verify your router's WAN IP address matches the IP that your VPN client (iphone) is attempting to connect to. \

When is the last time you updated the router's firmware?

Edit: point your home computer's web browser to ipchicken dot com to easily obtain your WAN IP (public) address

Troubleshooting from home with iphone WiFi off.

Router firmware is latest available.

Open VPN Connect log on phone app appears to be trying to access correct WAN IP address that was verified with ipchicken.

Open VPN Connect log does appear to list "certificate verify failure" so I need to determine how to address this. Maybe reinstall the client.ovpn file to the iphone.

 

[EagleEye7]

Is it possible one of the certificates in the PKI infrastructure for OpenVPN, which you may have created when you set it up (you said it was a couple of years ago), has expired?

Often with these certs you specify an expiry time when you create them, after this date they will cease to work. Need regeneration.

 

[pinecone]

Is it possible one of the certificates in the PKI infrastructure for OpenVPN, which you may have created when you set it up (you said it was a couple of years ago), has expired?

Often with these certs you specify an expiry time when you create them, after this date they will cease to work. Need regeneration.

That may have been the case, but I don't remember any date being specified.

Anyway it's back working correctly after creating a new client.opvn file and importing to iPhone. I also wonder about the frequent IOS updates to the phone?? I definitely learned how to do some troubleshooting with OpenVPN on this one.

Thanks for the help.