I am having problem also with ovpn for a month now as reported in my other post.
From Win 10 to Mikrotik:
OpenSSL: error:14094415:SSL routines:ssl3_read_bytes:sslv3 alert certificate expired
TLS_ERROR: BIO read tls_read_plaintext error
TLS Error: TLS object -> incoming plaintext read error
TLS Error: TLS handshake failed
it is to be noted that the certificates, CA and crl are all current and verified as such in terminal mode. I can connect with the same certificates via ikev2.
However if I uncheck Require Client Certificate on the ovpn server side of the Mikrotik it will connect. So there is an issue with the certificate checking on the Mikrotik side in the ovpn part.
From mikrotik to mikrotik, I have a TLS failed error:
ovpn-out1: disconnected <TLS failed>
ovpn-out1: terminating... - TLS failed
From iOS to mikrotik:
VERIFY OK (CA)
VERIFY OK (sub CA)
VERIFY OK (server cert)
Client exception in transport_recv_excode: mbed TLS: SSL read error: SSL - A fatal alert message was received from our peer.
If you have any idea why or how to fix it that will make my day…