I have quite a few users with old openvpn versions out there which are still using TLSv1.0.
Problem: the log line doesn't contain the username: 2021-07-15 02:13:22 openvpn-gw201-int openvpn-udp 109.69.55.111:63169 Control Channel: TLSv1, cipher TLSv1.0 ECDHE-RSA-AES256-SHA, peer certificate: 2048 bit RSA, signature: RSA-SHA256 Right now I'm correlating using field #5 (IP:Port), but is there an easier way? Is the TLS version in any environment variable so I can log it using a client-connect or learn script? -- Ralf Hildebrandt Charité - Universitätsmedizin Berlin Geschäftsbereich IT | Abteilung Netzwerk Campus Benjamin Franklin (CBF) Haus I | 1. OG | Raum 105 Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 ralf.hildebra...@charite.de https://www.charite.de _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
