+- Yealink Forums (http://forum.yealink.com/forum)
+-- Forum: IP Phone Series (/forumdisplay.php?fid=4)
+--- Forum: General topics (/forumdisplay.php?fid=15)
+--- Thread: V85 VPN no longer working (/showthread.php?tid=44164)
V85 VPN no longer working - avayax - 06-22-2020 10:00 AM
I have T42s connecting over VPN.
I tried an upgrade to V85 but the VPN no longer connects.
My guess is that the vpn version that comes with V85 is not compatible with my vpn server version or maybe only supports certain ciphers.
What's new or different about vpn in V85?
RE: V85 VPN no longer working - gerdesj - 07-22-2020 11:29 AM
(06-22-2020 10:00 AM)avayax Wrote: I tried an upgrade to V85 but the VPN no longer connects.
...
What's new or different about vpn in V85?
I have a T58 and can get OpenVPN working fine with V84 but it breaks with V85 and then starts working again on downgrade back to V84.
For reference here is the working vpn.cfg:
Code:
dev tun
tun-ipv6
persist-tun
persist-key
cipher AES-128-CBC
auth SHA1
tls-client
client
resolv-retry infinite
remote vpn.example.co.uk
port 443
proto tcp-client
ca /config/openvpn/keys/ca.crt
cert /config/openvpn/keys/client.crt
key /config/openvpn/keys/client.key
tls-auth /config/openvpn/keys/ta.key 1
remote-cert-tls server
comp-lzo adaptive
passtosMy OpenVPN server is on pfSense and to get the above working, I had to separate out the server name, port (443) and protocol (TCP). The pfSense export put them on one line. Note that unlike many examples in Yealink docs and posted in these forums, tls-auth does work at least on V84!
I don't have time to try all permutations by simply guessing and there seem to be no logs to look at for this.
V85 has a L2TP client added in and that does work with the pfSense implementation but I want to stick with OpenVPN for now.