Hi!
I have on my LAN a IPFire with OpenVPN, and its admin web interface is a self signed https://192.168.222.254:444/ that is not secure (see wiki.ipfire.org - Login to the Web User Interface ). Also I have on my LAN a private Calibre http book web page http://192.168.222.160:8083/ (see Docker ).
They have custom ports, but I have other local sites with custom ports that work OK.
Normally on LAN, via VPN from work, via VPN with my phone as hotspot and via VPN from many other places I have no problems using the two sites. So 95% of the time, all is OK.
But sometimes, in rare occasions on some WIFIs it do not work. As today I am at a friends home, and thru his WIFI it accept username and password, but just load 10% of the IPFire page and then it times out. Like this:
During lucky tries, it shows more of the menus. If I try some other page on IPFire with the menus, or manually write the URLs, it most often just times out.
The calibre site gives “The connection to the server was reset while the page was loading.”.
With phone as hotspot all is OK.
But I can access my Qnap NAS admin web page, and all SMB shared files on it, and some other sites and stuff at home via VPN. So just a few things do not work. And that IPFire admin web works ~10%, that is even more strange.
He has a Asus RT-AC68U router, and I tried to turn off all different settings, I even tried to turn of the firewall on it without luck. No warnings or error in OpenVPN log or in the IPFire logs, what I can see.
Do you have any guess what it could be and what could fix it?
Server has:
Global Settings
Protocol: UDP
MTU size: 1500
Destination port: 443
Hash algorithm: SHA2 (512 bit)
Encryption: AES-GCM (256 bit)
TLS Channel Protection: True
Client:
#OpenVPN Client conf
tls-client
client
nobind
dev tun
proto udp
tun-mtu 1500
remote server.com 443
pkcs12 raffe.p12
cipher AES-256-GCM
auth SHA512
tls-auth ta.key
verb 3
remote-cert-tls server
verify-x509-name server.com name
mssfix 0
auth-nocache
auth-token-user USER
auth-token TOTP
auth-retry interact
providers legacy default
EDIT: Maybe it is something with the Windows 11 OpenVPN v2.6.5 client. With Phone > Wifi > OpenVPN > IPFire WUI it works.