Skip to main content
search
Connection Drops during Rekeying using TCP with OpenVPN c... - KH2183

Frequently Asked Questions

Deutsch (de) English (en) Français (fr) Nederlands (nl) Italiano (it) Español (es) Polski (pl) Magyar (hu) Română (ro) Croatia (hr) Svenska (sv) Dansk (da) ไทย (th) Türkçe (tr) 한국어 (ko) 日本語 (ja) Català (ca) Slovenský (sk) Čeština (cs) Ελληνικά (el) Indonesia (id) עברית (he) Suomi (fi) Norwegian Bokmål (nb) Tiếng Việt (vi) Slovenščina (sl) भाषा (hi) Melayu (ms) Русский (ru) 中文(香港)(zh-HK) 中文(繁體)(zh-Hant) 简体中文 (zh-Hans)
🔍
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua.
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor
Lorem ipsum dolor sit amet, consectetur adipiscing
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed
Lorem ipsum dolor sit amet, consectetur
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore
Lorem ipsum dolor sit amet, consectetur adipiscing elit.
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed
I can't see all of my connections when I sign in to VPN Tracker on iOS
I have installed a certificate under iOS, but it is not evaluated!
VPN protocols not supported on iPhone/iPad
I'm having problems with my VPN Tracker connection on iPhone/iPad. How can I send a log (TSR)?
How to access file servers on iOS
I already have VPN Tracker for Mac - can I also use it on iPhone / iPad?
Tips for file server access over VPN on iPhone and iPad
I'm having problems with my OpenVPN connection, the connection keeps dropping out. I am using the “TLS-Crypt” option on the OpenVPN server.
I'm having disconnections with my OpenVPN connection. What can I do?
I upgraded my Sonicwall to 6.5.4.13. Now I have problems with my IPsec connections. What can I do?
Can you help me set up a VPN connection for SonicWALL TZ series?
Can I consolidate licenses from two separate accounts?
Can I connect to my SonicWALL SSL VPN on my iPhone?
Can I use the Personal Hotspot on my iPhone or smartphone to connect to VPN on the Mac?
Can I connect to my Cisco AnyConnect SSL VPN connection on my iPhone?
Which VPN protocols does VPN Tracker for iOS support?
When will VPN Tracker for iOS be available?
Is setting up my connection on my.vpntracker secure?
Can I use VPN Tracker on my iPad or iPhone?
Legacy VPN Tracker products: End-of-support
How do I share a connection using TeamCloud
I have already set up VPN connections with VPN Tracker on my Mac. Can I use them on my iPhone or iPad?
Which is faster: IPSec or SSL VPN?
How can I connect to a WireGuard® VPN server?
What is DynDNS or DDNS and why do I need this for my VPN connection?
Which hardware (MAC) address will be used for DHCP over VPN with SonicWall devices?
How do I cancel my subscription in the App Store?
Which iOS versions are compatible with VPN Tracker?
Can I connect to WireGuard VPN?
How do I change my Team Name?
How do I invite a new team member?
Why has the lifetime of certificates been shortened further and further in recent years?
Why do businesses need VPN Tracker when switching to Mac?
I've already purchased but want to change to a different license
Why am I experiencing DNS issues in Firefox when connected to VPN?
Why does my Internet stop working after connecting to my VPN?
Why is it so important that a certificate is stored correctly on the VPN gateway?
OpenVPN connection to Ubiquiti Unifi Gateways does not work
Why does my connection sometimes work and sometimes not, especially when using personal hotspots or LTE/5G routers?
What Is PPTP VPN? (Point-to-Point Tunneling Protocol)
How can a setup a host to everywhere connection with my Linksys Router?
I’m having trouble connecting to my Sonicwall using the “Sonicwall Mobile Connect for Mac and iOS” client on my Mac and iOS devices. Every time I try to establish a connection, I receive the message “This is not a SonicWall SSL VPN server.” What should I do?
Can VPN Tracker replace my Windows VPN client?
Is there a central management option for teams?
I am confused by the new VPN Tracker Plans, how do I choose which one best fits my needs?
Why would OpenVPN connections to Zyxel USG FLEX firewalls always fail with early timeout?
OpenVPN connection works in general but disconnects after a while
I am having issues setting up my VPN connection with Fortigate. In the Fortigate web interface, I cannot fill in the Preshared Key, for example.
My VPN Tracker licenses are up for renewal soon, and I would like to change the number of licenses. How can I do that?
Some users are experiencing connectivity issues with their SonicWall VPN, while others can connect successfully using the same VPN configuration. This is not an authentication problem, but once the connection is established, the VPN becomes unusable.
I’m having issues with a Cisco AnyConnect gateway. What can I do?
I am having issues with my FortiSSL connection. Could it be due to the “Strict Host Check”?
How can I identify issues with my internet connection, for example, when receiving error messages that a specific server could not be reached?
My SonicWall connection fails with “Negotiation Failed (PPP)”
FortiGate: Should I Use IPsec or SSL-VPN?
I set up a WireGuard connection on my Fritzbox and imported it into VPN Tracker. When I connect to the Fritzbox via VPN, all internet traffic is routed through the Fritzbox. How can I prevent this?
How do all the OpenVPN keep-alive, activity, and alive checks settings work together?
How Can I Print Documents on My Home Printer While Using VPN Tracker Remotely?
Can I configure WireGuard connections with 2-Factor Authentication?
What is VPN Tracker?
Does VPN Tracker support all major VPN protocols?
Is VPN Tracker compatible with M1 and M2 Macs?
Can I use VPN Tracker in a zero-trust or hybrid work environment?
Do I need to reconfigure my firewall or VPN gateway?
Can I contact you if I need help?
Can I establish a VPN tunnel within an existing VPN tunnel (tunnel-in-tunnel)?
Sometimes I get an XAuth timeout when connecting. When I try again, VPN Tracker asks me for my password. How can I turn this off?
Can I use a TheGreenBow IKEv1 connection with VPN Tracker?
How do I invite equinux Support to my team?
I can’t remove a member from my team
I cannot connect to my SonicWall SSL gateway. What can I do?
Which EAP authentification methods does VPN Tracker support for IKEv2?
I'm having trouble receiving the invitation emails for a VPN tracker team.
Is 2FA available for my account?
How can I set up two-factor authentication for my VPN Tracker account?
I'm having trouble signing in with two-factor authentication (2FA)
Will I be charged a fee when starting a trial license?
Connection Drops during Rekeying using TCP with OpenVPN connections
 
  1. What are connection drops during rekeying?

    Connection drops during rekeying occur when the VPN connection is interrupted during the key update (rekeying). This causes traffic to not be processed for a short period, which is particularly problematic for stable connections such as video conferences.

  2. Why does the problem occur during rekeying?

    The problem arises because, when using TCP with OpenVPN, the firewall does not accept any traffic during the rekeying process. This leads to an interruption of the traffic.

  3. What impact do connection drops have on a video conference?

    During a video conference, connection drops during rekeying can result in a complete interruption of the traffic. This causes the connection to break, disrupting or even ending the video conference.

  4. Why is TCP susceptible to this problem?

    According to OpenVPN, TCP is problematic for VPN connections because it is more sensitive to traffic congestion during network disruptions or the rekeying process. OpenVPN therefore recommends using UDP instead, as it can better handle rekeying processes.

  5. What solution does VPN Tracker provide for the problem?

    VPN Tracker offers a particularly user-friendly solution: when establishing a connection, VPN Tracker automatically sets the rekeying timer to 24 hours. This significantly minimizes connection drops due to rekeying processes, keeping the connection especially stable. Additionally, VPN Tracker supports switching to UDP, which allows for an even more reliable connection.

  6. Why should the rekeying timer be set to 24 hours?

    A longer rekeying cycle reduces the frequency of connection drops. By setting the timer to 24 hours— as VPN Tracker does by default— the likelihood of the rekeying process being triggered during a critical phase, such as a video conference, is decreased.

  7. What advantages does VPN Tracker have when using UDP over TCP?

    VPN Tracker makes it easy to configure UDP, which offers faster connections and less sensitivity to packet loss. UDP is more efficient and resilient to interruptions during the rekeying process, which is particularly beneficial for bandwidth-intensive applications like video conferencing or streaming.

  8. What recommendations does VPN Tracker provide for companies to optimize their VPN connections?

    For companies relying on stable connections, VPN Tracker offers simple and effective solutions:

    • By default, the rekeying timer is set to 24 hours to minimize connection drops.
    • It is recommended to use UDP instead of TCP whenever possible to further enhance performance.

Answer helpful?
 
Your rating
KH2183 | Jun 19, 2026 | Link to this FAQ
VPN Tracker for Mac VPN Tracker for iOS
I’ve created a WireGuard connection. Can I share it with multiple employees or use it on multiple devices at the same time?
How can I migrate from a Windows VPN setup to VPN Tracker on Mac?
VPN Tracker system components failed to install (e.g. OSSystemExtensionErrorDomain error 10): What can I do?
How do I allow VPN Tracker’s system extensions via MDM?
If I change the password for the VPN Tracker admin console, will it affect the end users?
When connecting via IPsec VPN to a FritzBox, the error message:“No Proposal chosen (Phase 1)” often appears on the first connection attempt.
I have updated my Telekom Digitalisierungsbox and can still connect to my VPN, but I can no longer reach the target network. What should I do?
Why do I experience poor VPN performance or drops when a TP-Link router is on my network path?
Does VPN Tracker support the Palo Alto Globalconnect protocol?
Why does my OpenVPN connection to a Synology suddenly stop working over UDP?
Why may an IKEv2 VPN connection suddenly fail to connect?
What is a good SecuExtender alternative for Mac if my school uses Windows?
What VPN Tracker settings do I need for a Zyxel IKEv2 VPN connection on Mac?
Why won't my IKEv2 VPN connect on Mac even though the settings look almost correct?
Can I use a VPN connection that already works for a colleague in VPN Tracker?
Why is VPN Tracker not connecting to my IKEv2 VPN?
What does it mean if a VPN gateway was changed from IKEv2 to IKEv1?
Which remote identifier should I use for an IKEv2 VPN connection on Mac?
How do I change the remote identifier in VPN Tracker to Domain Name (FQDN)?
Why does the school VPN work on another device but not on my Mac?
Can a VPN Tracker trial prevent an IKEv2 connection from working?
How can I invite VPN Tracker Support to my team?
How do I set up school VPN access on Mac?
Does VPN Tracker work with VPN access that is used with SecuExtender on Windows?
Which VPN details does school IT need to provide for VPN Tracker?
Why are VPN instructions different for Windows and Mac?
Is SecuExtender available for macOS or do I need an alternative?
What is the difference between SecuExtender and VPN Tracker on Mac?
Why does VPN Tracker ask for IKEv1 or IKEv2 when my school IT only mentions SecuExtender?
How do I install a Linux VPN on my Mac?
Which Linux VPN protocols can I use with VPN Tracker on Mac?
Can I import a WireGuard or OpenVPN configuration from a Linux server into VPN Tracker?
What information do I need to set up a Linux VPN connection on Mac?
How can I hide old error messages in VPN Tracker?
How do I change a team member's role in VPN Tracker?
How do I make a team member an administrator in VPN Tracker?
How do I remove the administrator role from a VPN Tracker team member?
Close Menu
Privacy Settings / Datenschutz-Einstellungen