Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Collapse

Cloudron Forum

Apps | Demo | Docs | Install

Change protocol from TCP to UDP

Scheduled Pinned Locked Moved OpenVPN
7 Posts 3 Posters 334 Views
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • P Offline
    P Offline
    p44 translator
    wrote on last edited by
    #1

    Dear all,

    default protocol port of OpenVPN 7494/TCP.

    Is possible to change protocol to UDP? This because some providers detect VPN over TCP and blocks that.

    Inside "app" location I saw a check on "VPN TCP Port": what if I deselect?

    Schermata 2021-03-26 alle 09.01.28.png

    Thank's a lot!

    nebulonN 1 Reply Last reply
    0
  • nebulonN Online
    nebulonN Online
    nebulon Staff
    replied to p44 on last edited by nebulon
    #2

    @p44 not sure if possible but I guess we can also add UDP alongside TCP, have to see.

    If you uncheck the TCP port, then it simply would not be opened up in the firewall and will not be setup to be forwarded to the app. I guess in this case it kinda renders the OpenVPN app instance useless then

    P 1 Reply Last reply
    1
  • mehdiM Offline
    mehdiM Offline
    mehdi App Dev
    wrote on last edited by
    #3

    I am quite surprised that some providers detect and block VPN over TCP, as it should literally be impossible to distinguish between it and any other TLS-encrypted stream.

    However, it would be very valuable to add the option of using UDP instead, as it can be unstable to have TCP streams inside a TCP VPN when the network is not very reliable (the effect is called "TCP Meltdown", which is quite a badass name in my opinion ^^ https://openvpn.net/faq/what-is-tcp-meltdown/ )

    P 1 Reply Last reply
    1
  • P Offline
    P Offline
    p44 translator
    replied to nebulon on last edited by
    #4

    @nebulon Thank's a lot! Hope that feature can be added to OpenVPN so app can be used also to keep working VPN in some cases where Isp analyse Internet traffic.

    1 Reply Last reply
    0
  • P Offline
    P Offline
    p44 translator
    replied to mehdi on last edited by
    #5

    @mehdi Several countries and individual ISPs are known to use Deep Packet Inspection (DPI) to analyse Internet traffic. In that case, OpenVPN connection is instable or useless.

    Some VPN providers suggest to switch over UDP and in some cases add the "scramble" feature, so ports can be changed during data transfer.

    Eg. see this: StrongVPN and this

    mehdiM 1 Reply Last reply
    0
  • mehdiM Offline
    mehdiM Offline
    mehdi App Dev
    replied to p44 on last edited by
    #6

    @p44 The doc in question actually says the opposite :

    You can try UDP for a possibly faster connection, but if it can not connect, switch it to TCP.

    Which makes sense : UDP OpenVPN traffic is very specific, so easy to detect. TCP OpenVPN traffic is very hard to detect.

    P 1 Reply Last reply
    1
  • P Offline
    P Offline
    p44 translator
    replied to mehdi on last edited by
    #7

    @mehdi Thank's a lot! 🙂

    1 Reply Last reply
    0

  • Login

  • Don't have an account? Register

  • Login or register to search.
  • First post
    Last post
0
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Login

  • Don't have an account? Register

  • Login or register to search.