Hi, [...] > Now, if you add tls-auth or tls-crypt to the server (+client) config, even a > correct "openvpn UDP initial handshake" packet will *not* make the server > reply, > unless you also have the right tls-auth/tls-crypt configured on the client > side - which needs a (secret!) key to do so. > > So, with this config, OpenVPN is "invisible" because it will never reply > except to those that know the magic words :-)
Which is why I looove this tls-auth feature and have had it enabled from the first day we started using OpenVPN. And that has been close to 10 years by now I think. :-) Bonno _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
