Hello, just moving from the UBNT Edgemax Pro to the MKT CCR1036. So far so good and big improvement

I checked many OpenVPN posts but I cannot get my openvpn established for my sophisticated ivpn.net provider (they post all guides for pfsense, ddr-wrt, tomato but not mikrotik). Hardware is the CCR1036-12G-4S FW3.27 OS 6.39.1.

For the UBNT router, I just had to save the auth-user-pass.txt, the ca.cert, a tls.key and the ivpn.openvpn in /config/auth on the router. And then I called initially the ivpn.openvpn file for the configuration. Based on the config, the router established the tunnel.

Please advise how to do this best and most securely with the mikrotik CCR1036.

ivpn.openvpn file:

client
dev tun
proto udp
remote ch2.gw.ivpn.net 2049
auth-user-pass /config/auth/auth-user-pass.txt

resolv-retry infinite
nobind
persist-tun
persist-key
persist-remote-ip
route-nopull
cipher AES-256-CBC
tls-cipher TLS-DHE-RSA-WITH-AES-256-CBC-SHA:TLS-DHE-DSS-WITH-AES-256-CBC-SHA:TLS-RSA-W
ns-cert-type server
verify-x509-name ch name-prefix
ping 15
ping-restart 0
ping-timer-rem
reneg-sec 0

comp-lzo
verb 3

ca /config/auth/ca.crt
tls-auth /config/auth/tls.key 1

Mikrotik's implementation of OVPN doesn't support UDP nor compression.

Here you will find more info: https://wiki.mikrotik.com/wiki/Manual:Interface/OVPN

Thanks. Disappointing as I - very naively - expected mikrotik ccr1036/router os being able to deal with industry-standard openvpn (i.e. tls-auth, udp, compression) like pfsense, dd-wrt, tomato, ubnt etc manage to do well.

Btw: his is what the vpn provider says:

Microtik is not supported since the OpenVPN client lacks many core components. We do not have a guide nor official documentation due to the known limitations of OpenVPN on this device.