IOS 9.2.1 client is ignoring proto udp

[tafinho]

The following connection setup (working ok on MACOS):

client
dev tun
script-security 3
proto udp
[...]

results on the following logs:

OpenVPN core 3.0.11 ios arm64 64-bit built on Apr 15 2016 14:13:50
2016-09-13 11:43:24 Frame=512/2048/512 mssfix-ctrl=1250
2016-09-13 11:43:24 UNUSED OPTIONS
2 [script-security] [3]
5 [resolv-retry] [infinite]
6 [nobind]
10 [tls-cipher] [SRP-RSA-3DES-EDE-CBC-SHA:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA]

2016-09-13 11:43:24 EVENT: RESOLVE
2016-09-13 11:43:25 Contacting x.x.x.x:1194 via TCP
2016-09-13 11:43:25 EVENT: WAIT
2016-09-13 11:43:25 SetTunnelSocket? returned 1
2016-09-13 11:43:25 Transport Error: TCP connect error on ...

Which seems to be ignoring the proto directive.

[Gert Döring]

anything else on the "remote" line that you're not showing? If you have "tcp" there (remote x.x.x.x 1194 tcp) this will have precedence.

A complete config - without IP addresses, passwords, and keys, of course - would make this easier to comment on.

[tafinho]

This is the whole config, minus the embedded certificate:

client
dev tun
script-security 3
proto udp
remote xxx.net 1194
route-nopull
route 10.8.0.0 255.255.255.0
resolv-retry infinite
nobind
auth-user-pass
reneg-sec 0
cipher AES-256-CBC
tls-cipher SRP-RSA-3DES-EDE-CBC-SHA:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA
comp-lzo

[tafinho]

Actually, it's exactly that.

If I add udp it starts doing UDP connection . Doesn't work anyway, due to timeout, but at least it starts doing something right.

remote xxx.net 1194 udp

[Gert Döring]

Thanks for testing. I think it should also do the right thing with "proto udp" and not having udp on the "remote" line - but I have no insight into the iOS code, so I'll just give this to James.

[Antonio Quartulli]

v1.2.6 has just been launched on AppStore?. Could you please test that version and re-open this bug if the problem is still there?

Thanks!