Hi All,
I built openvpn 2.4.3-1 on server using patch also to allow for per client
cipher through ccd file.
I took the patch from https://community.openvpn.net/openvpn/ticket/845.
I have put at client ccd file "cipher none"
and at client config file "cipher none".
When connecting with client
o openvpn-devel, as this is not so much a "user"
> question if it concerns ongoing development patches :) )
>
> On Fri, Sep 15, 2017 at 06:04:27PM +0300, Alex K wrote:
> > I built openvpn 2.4.3-1 on server using patch also to allow for per
> client
> > cipher
Hi all,
I am receiving the below warning on server and client side when setting up
the tunnel:
server:
Fri Sep 15 16:45:14 2017 172.30.0.180:44304 WARNING: 'link-mtu' is used
inconsistently, local='link-mtu 1562', remote='link-mtu 1530'
client:
Fri Sep 15 16:45:14 2017 us=87436 WARNING:
Did not mention that I am using openvpn 2.4.3-1 on both sides.
Thanx,
Alex
On Fri, Sep 15, 2017 at 7:54 PM, Alex K <rightkickt...@gmail.com> wrote:
> Hi all,
>
> I am receiving the below warning on server and client side when setting up
> the tunnel:
>
> server:
&g
Hi Jan,
Yes, I use ncp-disable on client side so as to be able to have per client
cipher negotiation.
How can one have ncp-disable and avoid link MTU issues?
Thanx,
Alex
On Mon, Sep 18, 2017 at 7:43 PM, Jan Just Keijser <janj...@nikhef.nl> wrote:
> Hi Alex,
>
> On 15/09/17 18:5
hef.nl> wrote:
> Hi Alex,
>
> On 20/09/17 12:04, Alex K wrote:
>
> Hi Jan,
>
> The VPN tunnel is established successfully and connectivity is possible
> through the tunnel, except the link-mtu warning.
> Attached the client log.
>
>
>
> the client log shows th
Hi all,
I am migrating a server setup with two serer configs (serverA.conf,
serverB.conf) from Debian7 on a Debian9 server. I have removed server.conf.
When issuing systemctl start openvpn the server configs are not loaded.
I can load server configs only by issuing:
systemctl start
l you where the service file is located so you can have
> a look inside.
>
> The logs are available using
> journalctl -u openvpn@serverA
>
> Regards,
> Jiri
>
>
> On 05/16/2018 10:16 AM, Alex K wrote:
>
>> Hi all,
>>
>> I am migrating a server set
I see. Thank you!
Alex
On Sat, Jun 16, 2018, 02:12 Simon Deziel wrote:
> On 2018-06-15 05:29 PM, Alex K wrote:
> > Hi all,
> >
> > I have a server/client setup where I have set the following directive at
> > server and client:
> >
> > cipher AES-128-CBC
Hi all,
I have a server/client setup where I have set the following directive at
server and client:
cipher AES-128-CBC
When establishing VPN at client logs I see:
Fri Jun 15 17:25:22 2018 Data Channel Encrypt: *Cipher 'AES-256-GCM'
*initialized
with 256 bit key
Fri Jun 15 17:25:22 2018 Data
Thank you David for the thorough answer. I will try and perform some tests
and will post results here when done.
Thanx,
Alex
On Sun, Jun 17, 2018, 02:18 David Sommerseth <
open...@sf.lists.topphemmelig.net> wrote:
> On 17/06/18 00:07, Alex K wrote:
> >
> >
> > On Sa
On Sat, Jun 16, 2018 at 12:58 PM, Gert Doering wrote:
> Hi,
>
> On Sat, Jun 16, 2018 at 12:29:27AM +0300, Alex K wrote:
> > Hi all,
> >
> > I have a server/client setup where I have set the following directive at
> > server and client:
> >
> > cip
surprises from the quantum
computers :)
Thanx,
Alex
On Sun, Jun 17, 2018 at 8:23 AM, Alex K wrote:
> Thank you David for the thorough answer. I will try and perform some
> tests and will post results here when done.
>
> Thanx,
> Alex
>
> On Sun, Jun 17, 2018, 0
Understood. This is my understanding also.
Alex,
Thanx
On Mon, Jun 18, 2018, 01:53 David Sommerseth <
open...@sf.lists.topphemmelig.net> wrote:
> On 17/06/18 23:21, Alex K wrote:
> [...snip...]
> >
> > Seems that I can use AES-256-GCM since it gives same encapsulation
&g
Hi all,
I am trying to use the push-peer-info directive so as to push a custom
variable from client to server.
What I have done is:
at client side:
push-peer-info
setenv UV_TERM 3G
at server side i tried both with push-peer-info and without push-peer-info.
Prepared a quick script on server
date +%m/%d/%Y-%H:%M:%S ),${username},${untrusted_ip},
${ifconfig_local},${ifconfig_pool_remote_ip},${IV_VER},${IV_PLAT},${UV_TERM}"
>> ${logfile}
I now get the variable at server side!
Alex
On Thu, Jul 12, 2018 at 10:18 PM, Alex K wrote:
> Hi all,
>
> I am trying to use t
On Wed, Oct 10, 2018 at 10:14 AM Gert Doering wrote:
> Hi,
>
> to copy the reply from Steffan over to openvpn-users...
>
> On Tue, Oct 09, 2018 at 08:43:49PM +0200, Gert Doering wrote:
> > (copying in openvpn-devel, as this is something Steffan will want to
> > see...)
> [..]
> > Possibly this
Hi all,
I have lately upgraded the OpenVPN server to Debian9 which is using openvpn
2.4.0-6.
I have several openvpn clients terminating to this server which are running
Debian7 and one of them Ubuntu 12.04. I know, these are old... The debian7
ones are able to terminate the server and
Hi Girt,
On Tue, Oct 9, 2018 at 6:23 PM Gert Doering wrote:
> Hi,
>
> On Tue, Oct 09, 2018 at 05:46:23PM +0300, Alex K wrote:
> > confirmed, while the Ubuntu one is having a hard time. When establishing
> > VPN with the server the Ubuntu client gives the error:
> >
&g
On Wed, May 29, 2019, 23:35 David Mehler wrote:
> Hello,
>
> I've got an OpenVPN server on a vps. Connections from my home and
> roaming network computers/phones/tablets are working fine.
>
> I'd now like to add in an Asterisk server. My home machines and
> roaming phones/tablets/laptops can
On Sun, Aug 4, 2019, 23:34 Lorenz wrote:
> Hey there,
>
> I'm trying to connect two networks using a bridged OpenVPN (site to
> site) setup.
> The OpenVPN server is located within network A and the OpenVPN client in
> network B. Both networks are connected to the internet via a router.
> Network
On Fri, Aug 2, 2019, 07:57 Leroy Tennison via Openvpn-users <
openvpn-users@lists.sourceforge.net> wrote:
> If i put the following in my client configuration file:
>
> up /tmp/openvpn-test
>
> OpenVPN won't start.
>
> openvpn-test is world-readable and contains:
>
> #!/bin/bash
> /bin/echo "$1 $2
On Fri, Jul 31, 2020, 08:39 Gert Doering wrote:
> Hi,
>
> On Thu, Jul 30, 2020 at 11:33:45PM +0300, Alex K wrote:
> > On Wed, Jul 29, 2020, 07:57 Peter Fraser
> wrote:
> > > I set up my OpenVPN Server for IT access but now everyone seems to love
> > > and
On Fri, Jun 19, 2020, 01:35 Calvin Zachman wrote:
> Hi openvpn-users,
>
> Is it possible for multiple VPN clients on the same LAN to expose the same
> remote subnets to other connected clients?? I would like to run 2 VPN
> client instances on the same LAN exposing the same subnets (same iroutes)
On Wed, Jul 29, 2020, 07:57 Peter Fraser wrote:
> HI All
>
> I set up my OpenVPN Server for IT access but now everyone seems to love
> and I have to be allowing more and more persons. I wonder, is there a way
> to prevent one user from accessing a particular route that is listed in the
> global
On Wed, Apr 21, 2021, 23:56 Nikolaos Kakouros wrote:
> I am experimenting with openvpn and I try to understand how the mtu is
> calculated. If I set `--link-mtu 1460`, then the tun0 mtu I see with `ip a`
> is 1408. I understand that the IP + UDP headers are 28 bytes. What are the
> other 24
On Fri, Jan 8, 2021, 13:01 Ralf Hildebrandt
wrote:
> We have a flock of openvpn Servers. We're using DNS round robin (
> openvpn.charite.de).
>
> Currentlym we have
> 421 clients on machine 0
> 465 clients on machine 1
> 598 clients on machine 2
> 246 clients on machine 3
>
> How can I change my
Hi all,
I have a set of 3 hosts/servers, in an active/passive setup using
pacemaker/corosync where openvpn runs only at one of the hosts.
I have also some up/down scripts to add or remove some routes (defined from
iroute entries at ccd files per client at server) whenever a vpn client
connects
gs and keys. So if I edit
one ccd file all the hosts get the same instantly.
I was thinking also as a quick hack to just add a cron job at each host
which will look for all the iroutes and add the required routes in case it
is not the active host to reach the client networks through the active one
29 matches
Mail list logo