MyWi & ViscosityVPN

Got a problem with Viscosity or need help? Ask here!

super_kev

Posts: 18
Joined: Fri Nov 14, 2008 3:05 am

Post by super_kev » Thu Feb 02, 2012 2:06 pm
Has anyone been successful when using Viscosity through a cell phone connection? I had the opportunity to try MyWi 4 on a iOS 4 iPhone, but Viscosity cannot finalize the connection:
Code: Select all
Feb 01 18:56:22: Viscosity 1.3.5 (1051)
Feb 01 18:56:22: Checking reachability status of connection...
Feb 01 18:56:24: Connection is reachable. Starting connection attempt.
Feb 01 18:56:27: OpenVPN 2.2.1 x86_64-apple-darwin10.8.0 [SSL] [LZO2] [PKCS11] [eurephia] built on Aug  1 2011
Feb 01 18:56:26: MANAGEMENT: CMD 'state on'
Feb 01 18:56:26: MANAGEMENT: CMD 'hold release'
Feb 01 18:56:26: WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Feb 01 18:56:26: NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Feb 01 18:56:26: PRNG init md=SHA1 size=36
Feb 01 18:56:26: MTU DYNAMIC mtu=0, flags=1, 0 -> 138
Feb 01 18:56:26: PID packet_id_init seq_backtrack=64 time_backtrack=15
Feb 01 18:56:26: PID packet_id_init seq_backtrack=64 time_backtrack=15
Feb 01 18:56:26: PID packet_id_init seq_backtrack=64 time_backtrack=15
Feb 01 18:56:26: PID packet_id_init seq_backtrack=64 time_backtrack=15
Feb 01 18:56:26: Control Channel MTU parms [ L:1573 D:138 EF:38 EB:0 ET:0 EL:0 ]
Feb 01 18:56:26: MTU DYNAMIC mtu=1450, flags=2, 1573 -> 1450
Feb 01 18:56:26: Socket Buffers: R=[42080->65536] S=[9216->65536]
Feb 01 18:56:26: MANAGEMENT: >STATE:1328151386,RESOLVE,,,
Feb 01 18:56:26: RESOLVE_REMOTE flags=0x0101 phase=1 rrs=0 sig=-1 status=1
Feb 01 18:56:26: Data Channel MTU parms [ L:1573 D:1450 EF:41 EB:4 ET:32 EL:0 ]
Feb 01 18:56:26: Local Options String: 'V4,dev-type tap,link-mtu 1573,tun-mtu 1532,proto UDPv4,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Feb 01 18:56:26: Expected Remote Options String: 'V4,dev-type tap,link-mtu 1573,tun-mtu 1532,proto UDPv4,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Feb 01 18:56:26: Local Options hash (VER=V4): '2c50bd2c'
Feb 01 18:56:26: Expected Remote Options hash (VER=V4): '0ddbb6e3'
Feb 01 18:56:26: UDPv4 link local: [undef]
Feb 01 18:56:26: UDPv4 link remote: xxx.xxx.xxx.xxx:1194
Feb 01 18:56:26: MANAGEMENT: >STATE:1328151386,WAIT,,,
Feb 01 18:56:26: UDPv4 WRITE [14] to xxx.xxx.xxx.xxx:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Feb 01 18:56:27: MANAGEMENT: CMD 'hold release'
Feb 01 18:56:27: MANAGEMENT: CMD 'state on'
Feb 01 18:56:28: MANAGEMENT: CMD 'hold release'
Feb 01 18:56:28: UDPv4 WRITE [14] to xxx.xxx.xxx.xxx:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Feb 01 18:56:28: MANAGEMENT: CMD 'pid'
Feb 01 18:56:28: MANAGEMENT: CMD 'pid'
Feb 01 18:56:28: MANAGEMENT: CMD 'hold release'
Feb 01 18:56:28: MANAGEMENT: CMD 'pid'
Feb 01 18:56:28: MANAGEMENT: CMD 'pid'
Feb 01 18:56:32: UDPv4 WRITE [14] to xxx.xxx.xxx.xxx:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Feb 01 18:56:40: UDPv4 WRITE [14] to xxx.xxx.xxx.xxx:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Feb 01 18:56:56: UDPv4 WRITE [14] to xxx.xxx.xxx.xxx:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Feb 01 18:57:26: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Feb 01 18:57:26: TLS Error: TLS handshake failed
Feb 01 18:57:26: PID packet_id_free
Feb 01 18:57:26: PID packet_id_free
Feb 01 18:57:26: PID packet_id_free
Feb 01 18:57:26: PID packet_id_init seq_backtrack=64 time_backtrack=15
Feb 01 18:57:26: PID packet_id_init seq_backtrack=64 time_backtrack=15
Feb 01 18:57:26: PID packet_id_free
Feb 01 18:57:26: PID packet_id_free
Feb 01 18:57:26: PID packet_id_free
Feb 01 18:57:26: PID packet_id_free
Feb 01 18:57:26: PID packet_id_free
Feb 01 18:57:26: PID packet_id_free
Feb 01 18:57:26: PID packet_id_free
Feb 01 18:57:26: PID packet_id_free
Feb 01 18:57:26: TCP/UDP: Closing socket
Feb 01 18:57:26: PID packet_id_free
Feb 01 18:57:26: SIGUSR1[soft,tls-error] received, process restarting
Feb 01 18:57:26: MANAGEMENT: >STATE:1328151446,RECONNECTING,tls-error,,
This is verb 7, and I could have done less, sorry. I have had no problems connecting to my OpenVPN network with any other "regular" wireless AP, but just had the opportunity and thought I'd see as I'd always been wondering. I thought it would work, but don't know if there is something with MyWi or cell connections that will hinder this process?

James

User avatar
Posts: 2108
Joined: Thu Sep 04, 2008 9:27 pm

Post by James » Fri Feb 03, 2012 3:15 am
Hi super_kev,

We know of quite a few users who connect over a cell phone connection (and I regularly connect over a tethered iPhone), so it should be possible. However there are two things you need to consider:

1. Many, if not most, mobile providers attempt to block VPN connections. In regards to OpenVPN they usually just block it's default configuration (UDP on port 1194). Switching to a different protocol and/or port should allow you to get around any blocking, however your server will also need to be configured to use the same details. TCP with a port of 443 has the best chance at succeeding.

2. Most mobile networks use a lower MTU than standard networks. Occasionally this can lead to drop outs or trouble connecting. Try modifying the MTU and fragment values if you think this may be the case.

Cheers,
James
James Bekkema
Viscosity Developer

Web: http://www.sparklabs.com
Support: http://www.sparklabs.com/support
Twitter: http://twitter.com/sparklabs
2 posts Page 1 of 1