Problema client OPENVPN IOS 11

[Drugantibus]

Ciao a tutti,

Ho configurato una VPN OPVN con un Mikrotik hAP lite (simps).

Da router a router funziona,
Da computer OSx con client Tunnelblick funziona,
Da Computer Windows 7 con client Openvpn funziona,

Con il client OpenVpn per iPhone iOS 11 mi ritorna questo errore:

2018-03-03 20:08:21 EVENT: RESOLVE
2018-03-03 20:08:21 Contacting [XX.XX.XX.XX]:443/TCP via TCP
2018-03-03 20:08:21 EVENT: WAIT
2018-03-03 20:08:21 Connecting to [ilmioserer]:443 (XX.XX.XX.XX) via TCPv4
2018-03-03 20:08:21 EVENT: CONNECTING
2018-03-03 20:08:21 Tunnel Options:V4,dev-type tun,link-mtu 1559,tun-mtu 1500,proto TCPv4_CLIENT,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-client
2018-03-03 20:08:21 Creds: Username/Password
2018-03-03 20:08:21 Peer Info:
IV_GUI_VER=net.openvpn.connect.ios 1.2.9-0
IV_VER=3.2
IV_PLAT=ios

2018-03-03 20:08:22 VERIFY OK : depth=1
cert. version : 3
serial number : 67:61:D0:0C:46:74:00:95
issuer name : CN=GabboCA
subject name : CN=GabboCA
issued on : 2018-02-27 14:50:47
expires on : 2019-02-27 14:50:47
signed using : RSA with SHA-256
RSA key size : 2048 bits
basic constraints : CA=true
key usage : Key Cert Sign, CRL Sign

2018-03-03 20:08:22 VERIFY OK : depth=0
cert. version : 3
serial number : 58:73:E4:84:17:A4:41:28
issuer name : CN=GabboCA
subject name : CN=Server
issued on : 2018-02-27 14:58:26
expires on : 2019-02-27 14:58:26
signed using : RSA with SHA-256
RSA key size : 2048 bits
basic constraints : CA=true
key usage : Digital Signature, Key Encipherment, Data Encipherment, Key Cert Sign, CRL Sign
ext key usage : TLS Web Server Authentication, TLS Web Client Authentication

2018-03-03 20:08:22 TCP recv EOF
2018-03-03 20:08:22 Transport Error: Transport error on 'gabbolo82.ddns.net: NETWORK_EOF_ERROR
2018-03-03 20:08:22 EVENT: TRANSPORT_ERROR Transport error on 'gabbolo82.ddns.net: NETWORK_EOF_ERROR [ERR]

La configurazione del client è questa:

client
dev tun
topology subnet
proto tcp

remote ilmioserver 443
resolv-retry infinite
nobind

topology subnet
server 192.168.200.0 255.255.255.0

persist-key
persist-tun

#ns-cert-type server
tls-client
#remote-cert-tls server
#key direction 1
#verb 1
verb 3
#verb 6

#cipher BF-CBC
#cipher AES-128-CBC
#cipher AES-192-CBC
cipher AES-256-CBC
#auth MD5
auth SHA1

auth-user-pass
auth-nocache

#route 192.168.200.0 255.255.225.0 192.168.200.8
route 192.168.0.0 255.255.255.0 192.168.200.1

<ca>
-----BEGIN CERTIFICATE-----
bla bla bla
-----END CERTIFICATE-----
</ca>

<cert>
-----BEGIN CERTIFICATE-----
bla bla bla
-----END CERTIFICATE-----
</cert>

<key>
-----BEGIN RSA PRIVATE KEY-----
bla bla bla
-----END RSA PRIVATE KEY-----
</key>

Sbaglio qualcosa?

Denghiu