There are slight mismatches in different places, such as OpenVPN's MTU setting including the size of the Ethernet header. Your tun-mtu setting is massive, as a 65KB packet is going to have a lot of latency issues going through the internet (IPv4 jumbo packets are around 9000 bytes in size, and mostly work on local networks). Try something under
Router to Router VPN Tunnel using Asus Routers - GS Tech Blog Mar 12, 2018 Stunnel + OpenVPN Server on Ubuntu 16.04 | by Jayden Chua Jun 24, 2019
OpenVPN Option for --reneg-sec n. I've started putting Grandstream phones on my VPN since Grandstream now has that option on there 21xx models for OpenVPN. But every 3600 seconds it does a TLS Reneg which makes the phone drop audio, lights etc.. for 1-2 seconds and then it comes back on. You don't lose the call just the phone as a blip.
How to setup OpenVPN on CentOS 7 (Server side and Client side)
After doing a bit of testing it appears that the reneg-sec directive does not work when the server (in this testing case OpenVPN 2.4.4 and 2.4.5) is charge of the renegotiation time (pushing the config option), but does work when the client is in charge.. I was able to reproduce this on the Linux CLI, my own Android (SWIG based) implementation, and an iOS/Mac version as well.
OpenVPN connection timeout after 1 hour : linuxadmin Try reneg-sec 0, by default openvpn will renegotiate keys every hour, if you're using anything like two-factor auth it won't succeed and you'll have to reconnect. level 2. Original Poster 2 points · 1 year ago. Exactly. So, you're doing it by running. vpn - Config import on network-manager-openvpn - Ask Ubuntu client dev tun proto tcp remote miami.proxpn.com 443 resolv-retry infinite nobind persist-key persist-tun ca ca.crt cert client.crt key client.key cipher BF-CBC keysize 512 comp-lzo verb 4 mute 5 tun-mtu 1500 mssfix 1450 auth-user-pass reneg-sec 0 # If you are connecting through an # HTTP proxy to reach the actual OpenVPN # server, put the DUO - Setting up Multi-Factor Authentication for OpenVPN