VPN P2S with OpenVPN keeps rconnecting

Question

Hey folks,

I set up an Azure Virtual Network Gateway (SKU VpnGw1) And vonfigured a P2S Connection for using OpenVPN. I also configured the Oen VPN Client using this doumentation:

https://learn.microsoft.com/de-de/azure/vpn-gateway/vpn-gateway-howto-openvpn-clients

The connection is estabilshed perfectly. However the Client reconnects approx. every 45 seconds.

This is an extractfrom the log at the time of the event:

11.6.2020, 11:45:37 EVENT: CONNECTED xxx.vpn.azure.com:443 (XXX.XXX.XXX.XXX) via /TCPv4 on TUN_WIN/10.2.0.2/ gw=[xxx.xxx.xxx.xxx/]
11.6.2020, 11:46:16 Session invalidated: KEEPALIVE_TIMEOUT
11.6.2020, 11:46:16 Client terminated, restarting in 2000 ms...
11.6.2020, 11:46:16 SetupClient: signaling tun destroy event
11.6.2020, 11:46:18 EVENT: RECONNECTING
11.6.2020, 11:46:18 EVENT: RESOLVE
11.6.2020, 11:46:18 Contacting xxx.xxx.xxx.xxx via TCPv4

I hope you can help me with that.

best regards

Jonas

Answer 1

We had the same problem with the OpenVPN Connect beta client 3.1.3 and the latest OpenVPN Connect stable client 2.7.1

With the OpenVPN client 2.4.9 it's working as expected.
The client can be found here: https://openvpn.net/community-downloads/

Answer 2

I have had the same issue of reconnecting every now and then , this disruption is surely a blocker for us , is there any resolution for this ? Please help

Answer 3

Is there any news on the topic? I am having the same issue and tried out every possible version of OpenVPN Client. It doesn't matter which client I use, It's constantly resetting the connection every 45 to 75 seconds!

This is what the log looks like:




29.4.2021, 10:54:40 Session invalidated: KEEPALIVE_TIMEOUT
⏎29.4.2021, 10:54:40 Client terminated, restarting in 2000 ms...
⏎29.4.2021, 10:54:40 SetupClient: signaling tun destroy event
⏎29.4.2021, 10:54:42 EVENT: RECONNECTING ⏎29.4.2021, 10:54:42 EVENT: RESOLVE ⏎29.4.2021, 10:54:42 EVENT: WAIT ⏎29.4.2021, 10:54:42 WinCommandAgent: transmitting bypass route to ---
{
    "host" : "---",
    "ipv6" : false
}

⏎29.4.2021, 10:54:42 Connecting to [---]:443 (---) via TCPv4
⏎29.4.2021, 10:54:42 EVENT: CONNECTING ⏎29.4.2021, 10:54:42 Tunnel Options:V4,dev-type tun,link-mtu 1523,tun-mtu 1500,proto TCPv4_CLIENT,keydir 1,cipher AES-256-GCM,auth [null-digest],keysize 256,tls-auth,key-method 2,tls-client
⏎29.4.2021, 10:54:42 Creds: UsernameEmpty/PasswordEmpty
⏎29.4.2021, 10:54:42 Peer Info:
IV_VER=3.git::58b92569
IV_PLAT=win
IV_NCP=2
IV_TCPNL=1
IV_PROTO=2
IV_AUTO_SESS=1
IV_GUI_VER=OCWindows_3.2.3-1851
IV_SSO=openurl

⏎29.4.2021, 10:54:42 SSL Handshake: CN=---, TLSv1.2, cipher TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
⏎29.4.2021, 10:54:42 Session is ACTIVE
⏎29.4.2021, 10:54:42 EVENT: GET_CONFIG ⏎29.4.2021, 10:54:42 Sending PUSH_REQUEST to server...
⏎29.4.2021, 10:54:42 EVENT: ASSIGN_IP ⏎29.4.2021, 10:54:42 OPTIONS:
0 [route] [10.0.1.0] [255.255.255.0] 
1 [route] [10.0.0.0] [255.255.255.0] 
2 [route-gateway] [10.0.3.1] 
3 [topology] [subnet] 
4 [ifconfig] [10.0.3.3] [255.255.255.0] 
5 [cipher] [AES-256-GCM] 

⏎29.4.2021, 10:54:42 PROTOCOL OPTIONS:
  cipher: AES-256-GCM
  digest: NONE
  compress: NONE
  peer ID: -1
⏎29.4.2021, 10:54:42 CAPTURED OPTIONS:
Session Name: ---
Layer: OSI_LAYER_3
Remote Address: ---
Tunnel Addresses:
  10.0.3.3/24 -> 10.0.3.1
Reroute Gateway: IPv4=0 IPv6=0 flags=[ IPv4 ]
Block IPv6: no
Add Routes:
  10.0.1.0/24
  10.0.0.0/24
Exclude Routes:
DNS Servers:
Search Domains:

⏎29.4.2021, 10:54:43 SetupClient: transmitting tun setup list to \\.\pipe\agent_ovpnconnect
{
    "confirm_event" : "080c000000000000",
    "destroy_event" : "fc0b000000000000",
    "tun" : 
    {
        "adapter_domain_suffix" : "",
        "add_routes" : 
        [
            {
                "address" : "10.0.1.0",
                "gateway" : "",
                "ipv6" : false,
                "metric" : -1,
                "net30" : false,
                "prefix_length" : 24
            },
            {
                "address" : "10.0.0.0",
                "gateway" : "",
                "ipv6" : false,
                "metric" : -1,
                "net30" : false,
                "prefix_length" : 24
            }
        ],
        "block_ipv6" : false,
        "layer" : 3,
        "mtu" : 0,
        "remote_address" : 
        {
            "address" : "---",
            "ipv6" : false
        },
        "reroute_gw" : 
        {
            "flags" : 256,
            "ipv4" : false,
            "ipv6" : false
        },
        "route_metric_default" : -1,
        "session_name" : "---",
        "tunnel_address_index_ipv4" : 0,
        "tunnel_address_index_ipv6" : -1,
        "tunnel_addresses" : 
        [
            {
                "address" : "10.0.3.3",
                "gateway" : "10.0.3.1",
                "ipv6" : false,
                "metric" : -1,
                "net30" : false,
                "prefix_length" : 24
            }
        ]
    },
    "wintun" : false
}
POST np://[\\.\pipe\agent_ovpnconnect]/tun-setup : 200 OK
TAP ADAPTERS:
guid='{B8EEBC7D-DB5C-4060-9588-97ECEE24AE24}' index=22 name='Local Area Connection'
Open TAP device "Local Area Connection" PATH="\\.\Global\{B8EEBC7D-DB5C-4060-9588-97ECEE24AE24}.tap" SUCCEEDED
TAP-Windows Driver Version 9.24
ActionDeleteAllRoutesOnInterface iface_index=22
netsh interface ip set interface 22 metric=1
Ok.
netsh interface ip set address 22 static 10.0.3.3 255.255.255.0 gateway=10.0.3.1 store=active
IPHelper: add route 10.0.1.0/24 22 10.0.3.1 metric=-1
IPHelper: add route 10.0.0.0/24 22 10.0.3.1 metric=-1
ipconfig /flushdns
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
TAP handle: 340d000000000000
⏎29.4.2021, 10:54:43 Connected via TUN_WIN
⏎29.4.2021, 10:54:43 EVENT: CONNECTED ---:443 (---) via /TCPv4 on TUN_WIN/10.0.3.3/ gw=[10.0.3.1/]⏎

Are there any other potential measures to solve this problem?

Many thanks
Samuel