Paul M wrote: > Curtis LaMasters wrote: >> Is this client connected over wireless? That looks like a TKIP replay >> error and not really anything to do with OpenVPN. To have multiple >> people connecting with the same key in OpenVPN you will need to use >> "duplicate-cn" on the server side under custom options. > > no, they're at home on the end of a cable modem or adsl > > sorry, I should said, that log is from the pfsense system logs->openvpn log
to answer my own question, no, you can't use shared key and have multiple clients. OK, so I was being lazy!!! I generated the keys using the instructions here: http://openvpn.net/howto.html#pki note. I found I had two sets of easy-rsa scripts for making keys, /usr/share/openvpn and also in /usr/share/openvpn/2.0, and the ones in the former caused an "unsupported certificate purpose" error, I used the scripts in the 2.0 directory and it all worked. I'm still setting up separate openvpn daemons each with their own CA for the moment. Paul --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
