On 2/3/2012 3:16 AM, Chris Buechler wrote: > On Fri, Feb 3, 2012 at 2:04 AM, Pete Boyd <[email protected]> > wrote: >> I have pfSense 1.2.3 setup to use its OpenVPN server. I use TinyCA to >> create CA and client certificates and keys on a separate computer, >> giving the CA cert to pfSense and the client certs & keys to users. >> >> If I upgrade pfSense 1.2.3 to 2.0.1, the OpenVPN will migrate fine, but >> will OpenVPN clients continue to be able to VPN into the pfSense OpenVPN >> server despite them not being in the User Manager, or do I have to >> additionally, manually, create accounts and paste in certs & keys using >> the User Manager? >> > > It'll stay exactly as it is. You won't be able to use the OpenVPN > Client Export without importing the user keys, but what you already > have will work just the same.
^ That, with a couple exceptions. There were some bugs in the upgrade code for OpenVPN that I fixed post-2.0.1 https://github.com/bsdperimeter/pfsense/commit/0d2156e5fa7a6504c7a7ceef24bc51dfe402c6ea https://github.com/bsdperimeter/pfsense/commit/d87d2f6767707193cde5fab59bf954db51ae430b https://github.com/bsdperimeter/pfsense/commit/4724f8b8bb6d3495c5c41296e25f64e05b113502 https://github.com/bsdperimeter/pfsense/commit/3ef4cae6048c1763b2666aa991bc2b58683932bf Most people didn't hit those, but still worth being on the lookout for. Jim _______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
