I can't help with question 1. A significant reason I can't is I'm not
understanding your configuration, you're going to have to be far more precise
(maybe offer an actual situation) to be helped. One of our OpenVPN servers is
on an Internet-facing firewall, in that case only the ACCEPT rule w
See
https://serverfault.com/questions/1074672/where-and-how-should-i-define-openvpn-user-pass
and
https://openvpn.net/community-resources/using-alternative-authentication-methods/
On Monday, July 24, 2023 at 05:44:16 AM CDT, Jason Long via Openvpn-users
wrote:
Hello,
Thank you so muc
Hello,I have three questions:
1- Is it possible to use the same key files for different servers or should
separate keys be generated for each server?
2- If it is possible to use the same key files, what are the advantages and
disadvantages?
3- When is it better to use new key files?
Thank you.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
--- Original Message ---
On Monday, July 24th, 2023 at 13:39, Jason Long wrote:
> Hello,
> What is top-posting?
> I just click on "Reply all".
Please send your replies to the mailing list, unless otherwise instructed.
Try google: "What i
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi,
Was it not yourself that asked people to stop top-posting ?
Regardless,
It behooves you to read the documentation for the tools you use.
The EasyRSA 'nopass' option, obviously, creates private keys without
password encryption.
If you encrypt
Hello,
Thank you so much for your reply.
In these command, why "nopass" ?
# ./easyrsa build-ca nopass
# ./easyrsa gen-req server nopass
# ./easyrsa gen-req client nopass
If I entered a password, then where is this password used?
On Monday, July 24, 2023 at 02:46:18 PM GMT+3:30, tincantec
From: "Jason Long via Openvpn-users"
mailto:openvpn-users@lists.sourceforge.net>>
Date: Saturday, 22 July 2023 at 15:06:10
To: "openvpn-users@lists.sourceforge.net"
mailto:openvpn-users@lists.sourceforge.net>>
Subject: [Openvpn-users] OpenVPN multiple connections and multiple NICs
Hello,
My O
The combination of your server address AND your ther port number your process
is listening on must be different.
So, on a single NIC (one up-address) you can have dozens of vpn-processes, each
listening on its own port.
PS, it is recommended that each vpn process hands out unique pool of addres
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi,
This seems to have been forgotten.
--- Original Message ---
On Thursday, July 20th, 2023 at 11:24, Niccolò Belli
wrote:
> I'm using Debian 12 Bookworm with OpenVPN 2.6.3 on the server and Arch
> Linux with OpenVPN 2.6.5 [git:makepkg/
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi,
--- Original Message ---
On Monday, July 24th, 2023 at 11:42, Jason Long via Openvpn-users
wrote:
> Hello,
> Thank you so much for your reply.
> Your answer raised another question in my mind. Can I use the same "ca.crt",
> "server.
Hello,
Thank you so much for your reply.
Your answer raised another question in my mind. Can I use the same "ca.crt",
"server.crt", "server.key" and "dh.pem" files for other servers? Or do I need
to create one for each new server?
The tutorial that I used to create the crypto files use the follo
You can not have multiple processes listening on the same UDP port.
We have dozens of vpn processes, EACH listening on its own dedicated UDP or TCP
port.
If you don’t like to have “complicated client config files”, then you just need
infront of your vpn-services a simple iptables DNAT-rule, spr
On Mon, 24 Jul 2023 05:45:47 + (UTC), Jason Long via Openvpn-users
wrote:
PLEASE STOP TOP-POSTING (corrected below)!
>>On Sunday, July 23, 2023 at 06:29:20 PM GMT+3:30, Gert Doering
>> wrote:
>>
>>Hi,
>>
>>>On Sun, Jul 23, 2023 at 01:32:19PM +, Jason Long wrote:
>>> 1- If the port numb
On 23.07.23 16:35, Jason Long wrote:
I have two more questions:
1- So, both of IP address and Port number must be different?
2- If the IP address is different, then the port can be the same?
Please answer my questions by number.
#2 is correct. For any protocol (like TCP and UDP) that uses "port
14 matches
Mail list logo
