Hallo Steffan
Am 09.10.18 um 22:56 schrieb Steffan Karger:
If you want to enforce ECDH, you should set 'dh none' ... *snip*
For ECDH-only it's probably best to set 'dh none', but not set ... *snip*
Your explanation was the solution for me. Thank you very much.
Best Regards
Thomas
Hi,
On 07-10-18 10:39, t...@thlu.de wrote:
> OS: Debian 9.5, Raspian 9.4
> Openvpn: 2.4.6
>
> Is it possible to confirm, that ECDH is really used? I have done 3
> tries, and it seems, all of them come to the same result:
>
> 1 (old):
> dh /etc/openvpn/dh.pem
> tls-auth /etc/openvpn/ta.key
Hello @ all
OS: Debian 9.5, Raspian 9.4
Openvpn: 2.4.6
Is it possible to confirm, that ECDH is really used? I have done 3
tries, and it seems, all of them come to the same result:
1 (old):
dh /etc/openvpn/dh.pem
tls-auth /etc/openvpn/ta.key 0
2:
dh none
ecdh-curve secp384r1
tls-cipher TL
