On 09/11/2020 10:32, Olivier CALVANO wrote: > Hello, > > I have a problem on a recent OpenVPN installation, the server asks > clients to re-authenticate every hour, whether there is activity on the > tunnel or not. > > How can I fix this problem?
While Gert is correct about --reneg-sec. This renegotiation is there for a reason as well. It is recommended to renegotiate the tunnel at regular intervals, to ensure the integrity of the VPN tunnel. It ensures the encryption keys used are renewed and rotated. For some users disabling the timer based renegotiation might be the right solution. But then you should enable renegotiation based on bytes or packet counters (--reneg-bytes, --reneg-pkts) instead. -- kind regards, David Sommerseth OpenVPN Inc
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
