Thanks for the clarification. I noticed your "upgrade" statement, just didn't
assume a strict dependency of the ".. OCC..." statement with the upgrade
statement. Working on an upgrade plan...
-Original Message-
From: Gert Doering
To: Leroy Tennison
Cc: open
I've seen a couple of replies to this but no direct answer to my question,
sounds like OpenVPN works similar to https, correct?
-Original Message-
From: Leroy Tennison via Openvpn-users
To: openvpn-users
Sent: Tue, Apr 28, 2020 5:28 pm
Subject: [Openvpn-users] OpenVPN architectur
Thank you, I appreciate the detailed response.
-Original Message-
From: Gert Doering
To: Leroy Tennison
Cc: openvpn-users
Sent: Wed, Apr 29, 2020 11:53 am
Subject: Re: [Openvpn-users] OpenVPN architecture
Hi,
On Wed, Apr 29, 2020 at 04:47:56PM +, Leroy Tennison via Openvpn-users
What are the steps I need to go through to setup openvpn on freebsd? What
exactly is open VPN exactly. I understand a little bit from using protonmail
VPN but don't get it much other than the wiki explanation
___
Openvpn-users mailing list
Op
What is a simple VPN I can construct on command line without even needing a
configuration file? And how. I'm on FreeBSD
___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
I started with the configuration file and got to encryption and found the
server and client configuration file examples but got stuck at static key and
what exactly to do with server and client configuration files.
Generate a static key:
$ openvpn --genkey --secret static.key
Copy the
dent Republic!Beware AntiChrist rising!
https://www.empire.kred/ROOTNK?t=94a1f39b Look at Psalms 14 and 53 on Atheism
The cure for worry is not worry. -unknown
___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/l
On Wed, May 27, 2020 at 08:31:20AM +0200, Antonio Quartulli wrote:
> Hi Doctor,
>
> On 26/05/2020 20:11, The Doctor via Openvpn-users wrote:
> > Just testing out a site, but it gave us the wrong city
> > and province.
> >
> > Wonder if this issue can be res
You may be able to do it, my concern would be "route confusion". We have that
situation with OpenVPN and a different VPN offering the same subnet to a
Windows client (two entries to the same subnet via different paths in Windows'
routing table) and it's not working. I ha
Good afternoon!
How Can I join a PC with openVPN to the Active Directory, does exists a manual,
Video, something like that??
José Fermín Francisco Ferreras Registered User #579535 (LinuxCounter.net)
___
Openvpn-users mailing list
Openvpn-users
Good evening!
Let me explain my scenario:
OpenVPN Server is in Server 2.
Active Directory and domain controller Server is in Server 1.
Example from a openVPN client:
nslookup example.local
Server: xxx.xxx.xxx.xxx
Address: xxx.xxx.xxx.xxx#53
** server can't find example.local: NXDOMAIN
Good afternoon!
How can I to generate IPs by range using OpenVPN?
I mean, we got 3 departaments, and we need to generate IP range by departaments.
Example:
IT departament:
10.0.8 2 to 10.0.8.20
Legal Departament:
10.0.8.21 to 10.0.8.30
Accounting Departament:
10.0.8.31 to 10.0.8.45
Ho
We use OpenVPN but are getting requests from customers for IPSec. In doing
research I came across a reference stating the OpenVPN development team has
"subscribed to" some standard for secure development but, of course, now I
can't find it. Does anyone have a reference to w
Hello!
Are there any way to connect MFA solution with push tokens - i.e. OpenVPN
server must wait while the end user is unlocking their phone and push some
button in the MFA application?
While ago I found that the older OpenVPN version was very sensitive to
authentication scripts runtime and
--
Отправлено из Mail.ru для Android___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
Хорошо, спасибо
--
Отправлено из Mail.ru для Android вторник, 19 января 2021г., 06:41 +06:00 от
Hans via Openvpn-users openvpn-users@lists.sourceforge.net :
>I thought this “feature” was solved some versions ago?
>Long time ago (version 2.1.4) I was caught off-guard by it, and had to
Hi!
Why don't you want to put a load balancer in front of your cluster? I
believe you can even run all openvpn instnces on same server (or a pair of,
just for redundancy). Nginx can balance openvpn clients just fine and limit
amount of backend connections, haproxy can work if you don'
I've ran into this issue with 2.5 clients. Adding 'explicit-exit-notify' to
the client's config resolved it for me.
–explicit-exit-notify [n]In UDP client mode or point-to-point mode, send
server/peer an exit notification if tunnel is restarted or OpenVPN process
is exited
>
> Kind regards,
> Enno
>
> --
> Enno Gröper
> Charité – Universitätsmedizin Berlin
> Geschäftsbereich IT | Netz
>
> ___
> Openvpn-users mailing list
> Openvpn-users@lists.sourceforge.net
> https://lists.sourcefor
Hello!
I've read a couple of guidelines regarding MFA with OpenVPN and all of them
mention that the 2nd factor could be either sent as password (with client
cert auth) or appended to the password string. Well, people tend to enter a
password when they see the password field.
At the momen
received this email in error, please contact the sender
by reply email and destroy all copies of the original message. Please also be
advised that emails are not a secure form for communication, and may contain
errors.
___
Openvpn-users mailing list
Good morning!
How can I make openvpn clients (Linux clients) surf the internet through
openvpn using the public ip of the openvpn server (the openvpn server is on
Windows)?And also that emails using Thunderbird can work with this method (that
emails can enter and leave without problems
nnect script.
-Original Message-
From: Gokan Atmaca
To: openvpn users list (openvpn-users@lists.sourceforge.net)
Sent: Sun, Jun 6, 2021 7:33 am
Subject: [Openvpn-users] log
Hello
I want to keep the records of all the clients connected to the ovpn ip
addresses for 1 year. How can I do
Good Morning Guys!!
How Can I To Hide a FTP connection inside OpenVPN service, I mean if any user
using wireshark cannot to see the FTP service user and password??
Notes:
I use: Windows Server 2019 Server, OPENVPN 2.4.6, FileZilla, Wireshark.
José Fermín Francisco Ferreras Registered User
/community-downloads/) in order to compare the packages
from the official repo and this here.
I personally prefer the community packages ...
Regards,
Andreas
___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net
This doesn't directly answer your question but we have done what you are about
to do and didn't have any problems. In our situation OpenVPN ran on a VM so we
did a backup of the image beforehand. Ubuntu is pretty good about not
replacing configuration files with customizatio
instead of
single-value benchmarks. For fast and dirty tests I use SCP of large files
with random data and ping in "flood" mode with minimum packet size.
Please note that OpenVPN is largely user space application and handing
billions of packets back and forth to the kernel always has it's
traffic to the VPN server.
-Original Message-
From: Bo Berglund
To: openvpn-users@lists.sourceforge.net
Sent: Mon, Mar 7, 2022 4:59 pm
Subject: [Openvpn-users] Remote RPi unit connected by VPN, how to SSH to it via
its tunnel from LAN device?
When I connect an RPi device to a remote net
Trying to find information on how OpenVPN uses the keys generated for the
client and server to encrypt traffic and not having any success (maybe I'm not
searching for the right terms). Can someone explain or point me to a URL
explaining how OpenVPN encrypts traffic once authenticati
Commit: ~GITHEAD~
Source Repo: https://github.com/OpenVPN/easy-rsa
lee0013@USMC02ZF1KTLVDT ~/workspace/AWS/AWS-VPN/easy-rsa/easyrsa3 $(kube_ps1)
[$(git_super_status)]$
Cheers,
David
___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
Hello,
from time to time i get flooded this in my Logs:
2022-04-14T07:28:28 Error openvpn Authenticate/Decrypt packet error:
bad packet ID (may be a replay): [ #93625413 / time = (1649776931)
2022-04-12 17:22:11 ] -- see the man page entry for --no-replay and
--replay-window for more info or
If this gets too complicated, another option may be to run multiple OpenVPN
servers, each with its unique access parameters. It's certainly more work but
might make each configuration simpler and easier to understand with the benefit
possibly outweighing the effort.
-Original Me
ediately if you have received this e-mail
by mistake and delete this e-mail from your system. If you are not the
intended recipient you are notified that disclosing, copying, distributing
or taking any action in reliance on the contents of this information is
strictly prohibited.*
___
later.
Here is a fairly minimal server/client config that can reproduce it. Note
that reneg-sec is set to 30 for demonstration of this issue only.
server.conf
>topology subnet
>server 192.168.254.0 255.255.255.0
>port 443
>proto tcp
>dev tun
>user openvpn
>group openvpn
>
Right, I think I'm getting somewhere with this now. It's not the OpenVPN
server version, it seems to be something to do with the management socket
options.
I mentioned that we have this in the config:
>management /run/openvpn/server/management.sock unix
>management-client-auth
If
ppreciated, so let me know if
you'd still like some logs. It looks like we've found the issue though.
Any client can be used to reproduce it, it doesn't have to be Viscosity.
Thanks
On Sun, Jul 3, 2022 at 5:53 PM Selva Nair wrote:
> Hi,
>
> On Sat, Jul 2, 2022 at 6:
27;ve found the issue though.
>
> Any client can be used to reproduce it, it doesn't have to be Viscosity.
>
> Thanks
>
> On Sun, Jul 3, 2022 at 5:53 PM Selva Nair wrote:
>
>> Hi,
>>
>> On Sat, Jul 2, 2022 at 6:20 PM Connor Edwards via Openvpn-users
After 10 years this happened to us, fortunately on a small VPN. In rushing to
get service restored, i used easy-rsa's build-ca, big mistake - had to
recreate all client certificates. After some research I found that "openssl
x509 -in /etc/openvpn/easy-rsa/keys/ca.crt -days 3650
e CA certificate the client was using, they were
different. I have connected to the server via ssh across the VPN from the
client and performed file operations (read, create, modify, delete) so, unless
something more obscure isn't working, I'm not aware of a problem.
In case it matters, t
Hello!
I'm looking for some way to configure *asynchronous* RADIUS authentication
to properly handle RADIUS server unavailability and probably
challenge-response MFA which demands humans-backed confirmation via RADIUS.
As RADIUS support is not a part of OpenVPN and there are a lot of out
wonder if the PAM
plugin is really asynchronous by default. Besides OTP, there are MFA mobile
applications that require users to press a button on their smartphone for
confirmation. In such cases RADIUS will reply when a user pressed the
button and thus the entire OpenVPN instance will be stuck f
You might have noticed our bug reports regarding capabilities && 2.6rc2.
The whole point of it all was to test 2.6.x's DCO in our openvpn infrastructure
:)
Upgrades were made, kernel module were being compiled and modprobed,
the gateway's filesystem is cluttered with source pac
looks like the logic that's failing has to do
with renewals, and might work fine during renewals, and is not
needed during initial certificate creation.)
Thanks,
Steve Summit
_______
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
(CBF)
Haus I | 1. OG | Raum 105
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155
ralf.hildebra...@charite.de
https://www.charite.de
signature.asc
Description: PGP signature
___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
A new day, a new observation!
$ sudo openvpn --config charite-hildeb.ovpn --up
/etc/openvpn/update-resolv-conf --down /etc/openvpn/update-resolv-conf
... connection is being established, and now I'm sending ctrl-c to openvpn on
the client ...
2023-01-19 10:11:40 Initialization Seq
u.
Steve Summit
_______
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
a
config file?
--
Ralf Hildebrandt
Charité - Universitätsmedizin Berlin
Geschäftsbereich IT | Abteilung Netzwerk
Campus Benjamin Franklin (CBF)
Haus I | 1. OG | Raum 105
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155
ralf.hildebra...@charite.de
https://www.charite.de
___
> It does, and it matters a lot. Mullvad breaks the OpenVPN protocol
> with their server configs (they should never ever push "comp-lzo"
> settings to a client that is not signalling it's willingness to accept
> them).
That's a bit like the problem we had locall
ure.asc
Description: PGP signature
_______
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
* Huma Yari :
> Hello everyone,
>
> We are having openvpn and it is a few days that I can see the following error
> in our server log file:
>
> Feb 10 10:44:33 openvpn 34974 TLS Error: cannot locate HMAC in incoming
> packet from [AF_INET]59.50.242.0:56359
Is that se
* Huma Yari :
> We are having openvpn and it is a few days that I can see the following error
> in our server log file:
So, just a few guidelines how to approach this:
1) Find out something about that IP. Where's that located?
Solution: Probably the city Sanya, province Ha
450 570 155
ralf.hildebra...@charite.de
https://www.charite.de
___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
ecked this on our different ubuntu machines and found that
openvpn (from the official build repos)
on focal: had no DCO
on kinetic: had DCO built-in
So I thought that libnl-genl and libnl-3 may not be available on focal
or may be a bit too old. So I checked that as well:
on kinetic:
# dpkg
* Gert Doering :
> On Fri, Mar 10, 2023 at 04:32:37PM +0100, Ralf Hildebrandt via Openvpn-users
> wrote:
> > Now we checked this on our different ubuntu machines and found that
> > openvpn (from the official build repos)
> >
> > on focal: had no DCO
> >
| D-12203 Berlin
Tel. +49 30 450 570 155
ralf.hildebra...@charite.de
https://www.charite.de
___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
token-user {authtoken_username_b64}"
# just making clear it's base64
push "auth-token {authtoken}"
On initial username/password authentication this "works":
May 5 09:04:07 openvpn-gw170-int openvpn-udp[29574]:
hildeb/10.31.192.115:55334 SENT CONTROL [hildeb]: 'PUSH_REPLY,
k
Campus Benjamin Franklin (CBF)
Haus I | 1. OG | Raum 105
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155
ralf.hildebra...@charite.de
https://www.charite.de
signature.asc
Description: PGP signature
___
Openvpn-users mailing list
Openvpn-u
ww.charite.de
signature.asc
Description: PGP signature
_______
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
Works but is painful on Ubuntu 22.04. I'm using "plugin
/usr/lib/openvpn/openvpn-plugin-auth-pam.so login" in the server configuration
and "auth-user-pass" in the client configuration per
https://openvpn.net/community-resources/using-alternative-authentication-meth
Using openvpn 2.6.4-focal0 (on Ubuntu focal 20.04)
My log says:
Jun 13 03:06:23 openvpn-igel-int tcp[452155]: OpenSSL: error:140E0197:SSL
routines:SSL_shutdown:shutdown while in init
Jun 13 03:06:23 openvpn-igel-int tcp[452155]: OpenSSL: error:140E0197:SSL
routines:SSL_shutdown:shutdown while
On Tuesday, 13 June 2023 10:16:36 CEST Ralf Hildebrandt via Openvpn-users
wrote:
> routines:get_name:no start line Jun 13 03:06:23 openvpn-igel-int
> tcp[452155]: CRL: cannot read CRL from file /etc/openvpn/ca/crl.pem
OpenVPN is typically run as a restricted user. I think this user needs
* Jonny Oschätzky via Openvpn-users :
> On Tuesday, 13 June 2023 10:16:36 CEST Ralf Hildebrandt via Openvpn-users
> wrote:
>
> > routines:get_name:no start line Jun 13 03:06:23 openvpn-igel-int
> > tcp[452155]: CRL: cannot read CRL from file /etc/openvpn/ca/crl.pem
>
&g
d
some garbage that looks lika a CRL at the end of the file.
$ cat crl.pem
-BEGIN X509 CRL-
MIIDBjCB7wIBATANBgkqhkiG9w0BAQsFADCBizELMAkGA1UEBhMCREUxCzAJBgNV
...
8uDcjj1k9E/QrQ==
-END X509 CRL-
-BEGIN X509 CRL-
Z2FyYmFnZQo=
-END X509 CRL-
The "openssl crt ...
. OG | Raum 105
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155
ralf.hildebra...@charite.de
https://www.charite.de
crl.pem
Description: application/pem-certificate-chain
_______
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
h
On 17.06.23 14:37, Ralf Hildebrandt via Openvpn-users wrote:
> Attached is the actual crl file in PEM format.
My OpenVPN (Debian 12) does not complain about your crl.
Jun 17 15:17:05 tenebris openvpn[3094334]: Diffie-Hellman initialized with 2048
bit key
Jun 17 15:17:05 tenebris openvpn[3094
* Jonny Oschätzky via Openvpn-users :
> On 17.06.23 14:37, Ralf Hildebrandt via Openvpn-users wrote:
> > Attached is the actual crl file in PEM format.
>
> My OpenVPN (Debian 12) does not complain about your crl.
>
> Jun 17 15:17:05 tenebris openvpn[3094334]: Diffie-Hel
Hello,I created an OpenVPN server and connected a Windows client to it and it
worked very good. I added a new NIC to my server and I want to connect new
clients to my OpenVPN server via this new NIC. My new NIC name is enp0s9:
# ifconfigenp0s3: flags=4163 mtu 1500
inet 10.0.2.15
Hello,How to run multiple configuration files at the same time? Can I merge the
configuration files?
Thank you.___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
Hello,Is it possible to hide the OpenVPN connection from the Internet
censorship and filtering devices? These devices easily block OpenVPN
connections.Does OpenVPN have special settings for this? Maybe there is a need
to change the source code of the OpenVPN program!
Any idea?
Thank you
Hello,In an internal network, clients do not have access to the Internet, but
the OpenVPN server has access to the Internet. If the clients connect to the
OpenVPN server with the OpenVPN client, will they be able to access the
Internet by default? Or need to write iptables rules for internet
Hello,
Thank you so much for your reply.
I did, but got an error:
# systemctl start openvpn-server@server
Job for openvpn-server@server.service failed because the control process exited
with error code.
See "systemctl status openvpn-server@server.service" and "journalctl -xeu
I have a situation where the conf file was modified by someone else but no
backup was made (I know, bad practice, I don't have control over that) but ps
seems to indicate that OpenVPN wasn't restarted afterward. Looking at the
command line displayed by ps, the config file is list
Hello,
My OpenVPN server has two NICs and both of them are connected to the Internet,
but Linux only activates one of them at the same time. For example:
# ping -I enp0s3 google.com
PING google.com (216.239.38.120) from 10.0.2.15 enp0s3: 56(84) bytes of data.
64 bytes from any-in-2678.1e100.net
Without seeing both conf files, I can only guess at the issue but, did you use
different "local" directives in each conf file?
On Saturday, July 22, 2023 at 08:02:17 AM CDT, Jason Long via Openvpn-users
wrote:
Hello,
My OpenVPN server has two NICs and both of them are connec
rt as well. There may be
additional firewall rules needed to allow access to this second server.
On Saturday, July 22, 2023 at 01:38:07 AM CDT, Jason Long via Openvpn-users
wrote:
Hello,
Thank you so much for your reply.
I did, but got an error:
# systemctl start openvpn-server@server
Jo
Thank you, that is very helpful. verb is currently 3 but that is easy to
change in the management console.
On Saturday, July 22, 2023 at 10:57:44 AM CDT, Selva Nair
wrote:
On Sat, Jul 22, 2023 at 3:20 AM Leroy Tennison via Openvpn-users
wrote:
I have a situation where the conf
dhcp-option DNS 208.67.222.222"
#push "dhcp-option DNS 208.67.220.220"
push "dhcp-option DNS 1.1.1.1"
push "dhcp-option DNS 192.168.1.20"
keepalive 10 120
tls-auth ta.key 0
#cipher AES-256-CBC
data-ciphers AES-256-CBC
user nobody
group nogroup
persi
Hello,
Is it possible to run multiple OpenVPN server on one NIC? Or each OpenVPN
server profile needs a separate NIC?
Thank you.
___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn
Hello,
Thank you so much for your reply.
This is normal in Linux. When you have two NAT NICs, just one of them is used
to connect to the Internet. You must write routing tables. Does OpenVPN do this
routing itself?
On Sunday, July 23, 2023 at 08:34:01 AM GMT+3:30, Leroy Tennison via
Hi Gert,
Thank you so much for your answer.
So, if I want to have multiple OpenVPN server profile on one NIC, then they
must have different port number. Am I right?
On Sunday, July 23, 2023 at 03:51:37 PM GMT+3:30, Gert Doering
wrote:
Hi,
On Sun, Jul 23, 2023 at 09:43:54AM +
Jul 23, 2023 at 12:30:31PM +, Jason Long wrote:
> Thank you so much for your answer.
> So, if I want to have multiple OpenVPN server profile on one NIC, then they
> must have different port number. Am I right?
On one *IP* address, yes.
A "NIC" can have multiple IP addresses,
, Jochen Bern
wrote:
On 23.07.23 15:32, Jason Long via Openvpn-users wrote:
> 1- If the port number is different, then "server" IP can be the same? > For
> example, the first server use:
>
> port 1194
[...]
> server 10.8.0.0 255.255.255.0
>
> The
Hi Gert,
Thanks again for your reply.
But, I tested my OpenvPN server. As I understand, the Port number is important
for the OpenVPN server, because with the same IP address and Different Port,
The OpenVPN worked.
Server 1:
port 1194
proto udp
dev tun
ca ca.crt
cert server.crt
key server.key
I'm a little unclear about your question so hopefully this general reply will
help. OpenVPN's "push" statement can push routes to clients for server-side
subnets, the "route" statement can inject routes to client subnets into the
server environment and 'i
A company I consult with is running three OpenVPN servers on a single NIC.
Either the port or possibly the protocol has to be different. And there are
cautions about running OpenVPN on tcp so probably best to stick to different
ports. In the situation above one OpenVPN instance used udp and
ables rules like the below, then the OpenVPN
server connects your NAT NIC to Virtual NIC:
# IF_MAIN=enp0s9
# IF_TUNNEL=tun1
# YOUR_OPENVPN_SUBNET=10.9.0.0/16
# iptables -I INPUT -p udp --dport 1195 -j ACCEPT
# iptables -A FORWARD -i $IF_MAIN -o $IF_TUNNEL -m state --state
ESTABLISHED,RELATED -j A
used to create the crypto files use the following command:
# ./easyrsa build-ca nopass
# ./easyrsa gen-req server nopass
# ./easyrsa gen-req client nopass
I want when the client wants to connect to my OpenVPN server, enter the
Username and Password. What changes should I make?
On Monday, J
M GMT+3:30, tincantech via Openvpn-users
wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi,
--- Original Message ---
On Monday, July 24th, 2023 at 11:42, Jason Long via Openvpn-users
wrote:
> Hello,
> Thank you so much for your reply.
> Your answer raised another questio
.
___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
See
https://serverfault.com/questions/1074672/where-and-how-should-i-define-openvpn-user-pass
and
https://openvpn.net/community-resources/using-alternative-authentication-methods/
On Monday, July 24, 2023 at 05:44:16 AM CDT, Jason Long via Openvpn-users
wrote:
Hello,
Thank you so
I can't help with question 1. A significant reason I can't is I'm not
understanding your configuration, you're going to have to be far more precise
(maybe offer an actual situation) to be helped. One of our OpenVPN servers is
on an Internet-facing firewall, in that case
14183 bytes 2522768 (2.4 MiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 22038 bytes 27950125 (26.6 MiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
My OpenVPN configuration file is like the below:
# cat server.conf
port 1196
proto udp
dev tun2
rn
wrote:
On 25.07.23 09:54, Jason Long via Openvpn-users wrote:
> enp0s3: flags=4163 mtu 1500
> inet 10.0.2.15 netmask 255.255.255.0 broadcast 10.0.2.255
> enp0s3:0: flags=4163 mtu 1500
> inet 10.0.5.20 netmask 255.255.255.0 broadcast 10.0.5.255
... so y
Hello,I have a question and I'm thankful if someone clear it for me.I guess it
would be better if each server has its own key files, but the server means the
server configuration file or an OpenVPN (physical or VM) server?I mean, if an
OpenVPN server has a lot of server configuration
2023 at 9:09 PM, Jochen Bern wrote:
On 25.07.23 18:10, Jason Long via Openvpn-users wrote:
> Hello,I have a question and I'm thankful if someone clear it for me.I guess
> it would be better if each server has its own key files, but the server means
> the server configuration
Hello,By default, the location of OpenVPN server configuration file is
"/etc/openvpn/". Is it possible to change this default location?
Thank you._______
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge
Hello,
I just created a virtual NIC and all the iptables rules that I did for a real
NIC, I did for this virtual NIC too. Consider an OpenVPN server that has one
NIC with three public IPs and you want to run an OpenVPN server.conf file for
each IPs. You must set these three public IPs on your
Hello,
Thank you so much for your reply.
Can I change this default location?
On Wednesday, July 26, 2023 at 09:18:35 AM GMT+3:30, Bo Berglund
wrote:
On Tue, 25 Jul 2023 21:42:40 + (UTC), Jason Long via Openvpn-users
wrote:
>Hello,By default, the location of OpenVPN ser
with more than one
IP address and iptables rules?
On Wednesday, July 26, 2023 at 01:05:25 PM GMT+3:30, Jochen Bern
wrote:
On 26.07.23 07:44, Jason Long wrote:
> I just created a virtual NIC and all the iptables rules that I did
> for a real NIC, I did for this virtual NIC too. Con
ey 0
data-ciphers AES-256-CBC
user nobody
group nogroup
persist-key
persist-tun
status /var/log/openvpn/openvpn-status.log
log /var/log/openvpn/openvpn.log
log-append /var/log/openvpn/openvpn.log
verb 3
explicit-exit-notify 1
Your iptables rules are:
# IF_MAIN=et
401 - 500 of 804 matches
Mail list logo
