PiVPN and my iPhone it still does not work

Adventures with PiVPN and having it not work.

This blog post is an attempt to summarize my battles with openvpn and the Raspberry Pi.

Initially it seemed to be a good idea to get a Pi, and some free software in order to set up a VPN for when I or my friends were not home and required secure internet browsing.

Documentation indicated that in theory all I had to do was run
curl -L https://install.pivpn.io/|bash
and answer a few simple questions to get my openvpn set up.
I tried this setup on a few pi boxes but found that a couple of them just hung at 100% after claiming to install packages.
Reinstalling one of the pi boxes did fix this.
I also attempted to install pivpn onto a vultr node for testing.

Whilst I got the basic configuration of pivpn working and the necessary port forwarded on routers along with dynamic dns where necessary; traffic would not flow over the vpn if packets were larger than a certain size.
If I connected the iPhone through the vpn on either the Pi or the Vultr node, small packets like dns would travel but larger packets would fail and apps such as whatsapp, mail, saphari or youtube would not work at all meaning my phone had no internet access once the vpn was connected.

I tried changing MSS with the mssfix 1300 option on the server, and whilst it did appear to limit the window size on TCP the vpn would still not function.

Currently the Openvpn client does not support the fragment option so not sure what else to try.
Any hints or tips appreciated.

One Reply to “PiVPN and my iPhone it still does not work”

  1. Hey Kerry,
    Are you by chance using dnsmasq?
    I believe when I swapped from bind9 and isc-dhcp-server to dnsmasq I had a problem similar and I had to add to ufw’s before.rules a specific dns rule.
    Hope this addresses your problem and helps.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.