Thank you, I appreciate the detailed response.
-Original Message-
From: Gert Doering
To: Leroy Tennison
Cc: openvpn-users
Sent: Wed, Apr 29, 2020 11:53 am
Subject: Re: [Openvpn-users] OpenVPN architecture
Hi,
On Wed, Apr 29, 2020 at 04:47:56PM +, Leroy Tennison via Openvpn-users
Hi,
On Wed, Apr 29, 2020 at 04:47:56PM +, Leroy Tennison via Openvpn-users
wrote:
> I've seen a couple of replies to this but no direct answer to my question,
> sounds like OpenVPN works similar to https, correct?
Sort of. It's a bit more complicated, but it boils down to "TLS runs,
authen
I've seen a couple of replies to this but no direct answer to my question,
sounds like OpenVPN works similar to https, correct?
-Original Message-
From: Leroy Tennison via Openvpn-users
To: openvpn-users
Sent: Tue, Apr 28, 2020 5:28 pm
Subject: [Openvpn-users] OpenVPN architectur
On Wed, Apr 29, 2020 at 09:37:06AM +0200, Gert Doering wrote:
> > HTTPS also has PFS[1] now, does OpenVPN have PFS too ? :))
>
> Of course :-)
>
> (it always had, in TLS mode. Not in p2p --secret mode, but that is
> deprecated - no PFS is one of the reasons)
Nice!
Thanks Gert.
signature.asc
Hi,
On Wed, Apr 29, 2020 at 08:57:07AM +0200, Marc SCHAEFER wrote:
> On Tue, Apr 28, 2020 at 10:26:40PM +, Leroy Tennison via Openvpn-users
> wrote:
> > Is OpenVPN architecture similar to HTTPS where the certificate, etc. is
> > used to encrypt and transmit a symmetric key which is then used
On Tue, Apr 28, 2020 at 10:26:40PM +, Leroy Tennison via Openvpn-users
wrote:
> Is OpenVPN architecture similar to HTTPS where the certificate, etc. is used
> to encrypt and transmit a symmetric key which is then used for all future
> communication?
HTTPS also has PFS[1] now, does OpenVPN h
Is OpenVPN architecture similar to HTTPS where the certificate, etc. is used to
encrypt and transmit a symmetric key which is then used for all future
communication?___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourcef
Gert Doering wrote:
> Hi,
>
> On Mon, Nov 30, 2015 at 09:54:32PM +1300, Jason Haar wrote:
>
>> eg, if there's no UDP error checking built into openvpn, then shouldn't
>> DNS lookups (ie udp inside a udp openvpn tunnel) fail a lot? Or is the
>> Internet generally so reliable that it doesn't matte
On Mon, Nov 30, 2015 at 9:54 AM, Jason Haar wrote:
> On 29/11/15 22:56, Steffan Karger wrote:
>> OpenVPN makes a distinction between control traffic (key/config
>> exchange, etc) and data traffic (actual vpn network packets). For
>> control packets, OpenVPN has a reliability layer that ACKs packe
Hi,
On Mon, Nov 30, 2015 at 09:54:32PM +1300, Jason Haar wrote:
> eg, if there's no UDP error checking built into openvpn, then shouldn't
> DNS lookups (ie udp inside a udp openvpn tunnel) fail a lot? Or is the
> Internet generally so reliable that it doesn't matter? (eg 1% packet
> loss on Intern
On 29/11/15 22:56, Steffan Karger wrote:
> OpenVPN makes a distinction between control traffic (key/config
> exchange, etc) and data traffic (actual vpn network packets). For
> control packets, OpenVPN has a reliability layer that ACKs packets,
> retransmits, etc. For data packets, OpenVPN does n
Hi Leroy,
On Mon, Nov 30, 2015 at 5:21 AM, Leroy Tennison
wrote:
> Thank you for your reply, I appreciate it (and the technical
> distinctions concerning reliability). Do you have a pointer to a source
> for additional information about what is retained in OpenVPN's "state"?
> I don't mind doing
Thank you for your reply, I appreciate it (and the technical
distinctions concerning reliability). Do you have a pointer to a source
for additional information about what is retained in OpenVPN's "state"?
I don't mind doing the reading if I just knew where to look (even a
well-labeled C struc
Hi,
On Sun, Nov 29, 2015 at 6:26 AM, Leroy Tennison
wrote:
> If I'm correctly reading into how OpenVPN works the server is in some
> sense stateful in that it has to remember the association of the
> original source address of a client with the client's VPN address in
> order to route a reply pac
If I'm correctly reading into how OpenVPN works the server is in some
sense stateful in that it has to remember the association of the
original source address of a client with the client's VPN address in
order to route a reply packet back to it. Are there other things it
remembers about the co
15 matches
Mail list logo
