Re: [Openvpn-users] ipv6 static address with ccd

I have a similar setup with OpenVPN 2.3 (2.4 didn't work - do not know why). What I have done is given a pool (from within the /112) to IPv6 dynamic (say starting from a000 onwards), while static clients in CCD take the earlier addresses. Guess this should prevent address clashes. Gert said: > Y

Re: [Openvpn-users] Is it safe to disable packet authentication (auth) with GCM ciphers?

Op 2-2-2017 om 13:43 schreef Steffan Karger: > Hi, > > On 2 February 2017 at 10:56, Dreetjeh D wrote: >> Op 31-1-2017 om 22:31 schreef Steffan Karger: >>> On 31 January 2017 at 21:53, Karol Babioch wrote: >>> <.> >>> The --auth parameter is . still used to determine the --tls-auth HMAC

Re: [Openvpn-users] Is it safe to disable packet authentication (auth) with GCM ciphers?

Hi, On 2 February 2017 at 10:56, Dreetjeh D wrote: > Op 31-1-2017 om 22:31 schreef Steffan Karger: >> On 31 January 2017 at 21:53, Karol Babioch wrote: >> <.> >> The --auth parameter is . still used to determine the --tls-auth HMAC >> digest. > > I guess in case of --tls-crypt, --auth i

Re: [Openvpn-users] Is it safe to disable packet authentication (auth) with GCM ciphers?

Hello, Op 31-1-2017 om 22:31 schreef Steffan Karger: > Hi, > > On 31 January 2017 at 21:53, Karol Babioch wrote: > <.> > The --auth parameter is . still used to determine the --tls-auth HMAC > digest. > > -Steffan I guess in case of --tls-crypt, --auth is not needed/doing anything?