Hello,
I want to implement the following scenario:
VPS (Shadowsocks Server) ---> Home Server (Shadowsocks Client + OpenVPN Server)
---> Client (OpenVPN Connect)
I want the clients to connect to the home server through OpenVPN Connect and
the OpenVPN server to use Shadowsocks client In
>On Sunday, January 28th, 2024 at 3:56 PM, Peter Davis via Openvpn-users
> wrote:
> Hello,
> I want to implement the following scenario:
>
> VPS (Shadowsocks Server) ---> Home Server (Shadowsocks Client + OpenVPN
> Server) ---> Client (OpenVPN Connect)
>
>
&
>On Monday, January 29th, 2024 at 11:44 AM, Gert Doering
>wrote:
> Hi,
>
> On Mon, Jan 29, 2024 at 06:29:20AM +, Peter Davis via Openvpn-users wrote:
>
> > What is wrong?
>
>
> What you are trying to achieve requires a deep understanding of IP routing,
with), or pay someone who has done the learning before.
>
> gert
> --
> Gert Doering - Munich, Germany g...@greenie.muc.de
Hi,
Thanks again.
Is "TCP: connect to [AF_INET]127.0.0.1:1080 failed: Unknown error" a routing
error?
___
Open
e to the server configuration file? For example, something like
"crl-verify crl.pem".
Thank you.
_______
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
>On Sunday, February 4th, 2024 at 3:41 PM, Gert Doering
>wrote:
> Hi,
>
> On Sun, Feb 04, 2024 at 10:31:20AM +, Peter Davis via Openvpn-users wrote:
>
> > I want to revoke a user's key and I have a few questions:
> > 1- If I revoke a key and create a n
On 05/02/2024 15:12, Bo Berglund wrote:
On Mon, 5 Feb 2024 14:04:38 +0100, Gert Doering wrote:
Hi,
On Mon, Feb 05, 2024 at 12:25:51PM +0100, Bo Berglund wrote:
How old is your OpenVPN?
This is on the Ubuntu 20.04 LTS server:
Aug 21 2023:
$ openvpn --version
OpenVPN 2.4.12 x86_64-pc
On 05/02/2024 13:38, Mathias Jeschke wrote:
Bo Berglund wrote:
I mean the logs being produced from these server.conf lines:
status /etc(openvpn/log/openvpn-status.log
log /etc(openvpn/log/openvpn.log
verb 4
Why do you insist on using legacy file based logs? Systemd's journal has
much b
.___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
>On Thursday, February 8th, 2024 at 2:29 PM, Gert Doering
>wrote:
> hi,
>
> On Thu, Feb 08, 2024 at 10:36:31AM +, Peter Davis via Openvpn-users wrote:
>
> > Is there a way to hide the number of connections to a server? Can an
> > intermediate server
>On Thursday, February 8th, 2024 at 3:45 PM, Jochen Bern
> wrote:
> On 08.02.24 11:36, Peter Davis via Openvpn-users wrote:
>
> > Is there a way to hide the number of connections to a server?
>
>
> From whom, having what resources at his disposal? What resou
>On Thursday, February 8th, 2024 at 9:36 PM, Gert Doering
>wrote:
> Hi,
>
> On Thu, Feb 08, 2024 at 05:58:42PM +, Peter Davis wrote:
>
> > Can an intermediate server be an OpenVPN server for clients and an OpenVPN
> > client for the final server at the same
overflows.
Why OpenVPN does not support ChaCha20-Poly1305 encryption?
Thank you.___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
>On Thursday, February 8th, 2024 at 10:21 PM, Jochen Bern
> wrote:
> On 08.02.24 19:36, Peter Davis via Openvpn-users wrote:
>
> > Why OpenVPN does not support ChaCha20-Poly1305 encryption?
>
>
> You sure?
>
> > $ openvpn --show-ciphers | grep -i ch
Hello,
With the help of the "openvpn-status.log" file, I can see which client is
connected to the server. I want to disconnect one of the clients. I know I have
to use the OpenVPN Management Interface. Should "--management IP port" be added
in the server configuration file
>On Friday, February 9th, 2024 at 1:10 AM, Gert Doering
>wrote:
> Hi,
>
> On Thu, Feb 08, 2024 at 06:14:48PM +, Peter Davis wrote:
>
> > How to connect the traffic from the OpenVPN server on the intermediate
> > server to the OpenVPN client on the inter
> On Friday, February 9th, 2024 at 8:11 PM, Gert Doering
> wrote:
> Hi,
>
> On Fri, Feb 09, 2024 at 04:37:29PM +, Peter Davis via Openvpn-users wrote:
>
> > With the help of the "openvpn-status.log" file, I can see which client
> > is connected to
Hello,
1- Is there a way to report when clients connect and disconnect?
2- Is it possible to notify the connection of a specific client to the server
through email?
Thank you.___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https
> On Tuesday, February 13th, 2024 at 9:58 PM, mike tancsa
> wrote:
> On 2/13/2024 1:13 PM, Peter Davis via Openvpn-users wrote:
>
>> Hello,
>> 1- Is there a way to report when clients connect and disconnect?
>>
>> 2- Is it possible to notify the connection of
tried to read the documentation here:
> > https://openvpn.net/community-resources/reference-manual-for-openvpn-2-5/
> >
> > I can find a lot of entries for the client-connect client-disconnect
> > details,
> > including how it can be configured with call arguments.
> On Sunday, February 18th, 2024 at 12:27 PM, Bo Berglund
> wrote:
> On Sun, 18 Feb 2024 06:50:06 +, Peter Davis via Openvpn-users
> openvpn-users@lists.sourceforge.net wrote:
>
> > > SOLUTION
> > >
> > > Just to follow up on my question
>
> On Sunday, February 18th, 2024 at 5:57 PM, Bo Berglund
> wrote:
> On Sun, 18 Feb 2024 09:44:14 +, Peter Davis via Openvpn-users
> openvpn-users@lists.sourceforge.net wrote:
>
> > Hi,
> > Mine is:
> >
> > # ls -l scripts/script-events.sh
>
On 19/02/2024 15:33, mich...@fritscher.net wrote:
Good day,
actually I use Easy-RSA on Windows on a regular base. Sometimes even for
OpenVPN servers on Windows, but most times for provisioning customer
configurations (1 server and 2-3 clients, fairly static) with an unique
key+cert set.
In
> On Monday, February 19th, 2024 at 5:16 PM, Bo Berglund
> wrote:
> On Mon, 19 Feb 2024 11:57:43 +, Peter Davis via Openvpn-users
> openvpn-users@lists.sourceforge.net wrote:
>
> > Hi,
> > Thanks again.
> > Can you put the script somewhere like pastebin? I
> On Tuesday, February 20th, 2024 at 8:26 PM, Bo Berglund
> wrote:
> On Tue, 20 Feb 2024 11:29:36 +, Peter Davis via Openvpn-users
> openvpn-users@lists.sourceforge.net wrote:
>
> > Hi,
> > Thanks again.
> > Can you make the report be saved to a file?
>
> On Tuesday, February 20th, 2024 at 8:26 PM, Bo Berglund
> wrote:
> On Tue, 20 Feb 2024 11:29:36 +, Peter Davis via Openvpn-users
> openvpn-users@lists.sourceforge.net wrote:
>
> > Hi,
> > Thanks again.
> > Can you make the report be saved to a file?
>
>On Wednesday, February 21st, 2024 at 1:01 PM, Bo Berglund
> wrote:
> On Wed, 21 Feb 2024 06:59:25 +, Peter Davis via Openvpn-users
> openvpn-users@lists.sourceforge.net wrote:
>
> > > On Tuesday, February 20th, 2024 at 8:26 PM, Bo Berglund
> > > bo.bergl.
> On Wednesday, February 21st, 2024 at 5:18 PM, Bo Berglund
> wrote:
> On Wed, 21 Feb 2024 11:04:48 +, Peter Davis via Openvpn-users
> openvpn-users@lists.sourceforge.net wrote:
>
> > Hello,
> > I use Debian. I used "bash" instead of "sh&quo
> On Wednesday, February 21st, 2024 at 9:48 PM, Gert Doering
> wrote:
> Hi,
>
> On Wed, Feb 21, 2024 at 05:53:59PM +, Peter Davis via Openvpn-users wrote:
>
> > What is wrong?
>
>
> Have you enabled the script in the openvpn config? Including raising
computer, honest figures come out. Never doubted
> it myself till I met a computer with a sense of humor."
> Robert A. Heinlein, The Moon is a Harsh Mistress
>
> Gert Doering - Munich, Germany g...@greenie.muc.de
Hi,
Thanks again.
You right. Logs are under
"/tmp/systemd-priva
> On Friday, February 23rd, 2024 at 12:36 PM, Bo Berglund
> wrote:
> On Fri, 23 Feb 2024 08:12:47 +, Peter Davis via Openvpn-users
> openvpn-users@lists.sourceforge.net wrote:
>
> > Hi,
> > Thanks again.
> > You right. Logs are
> On Friday, February 23rd, 2024 at 2:50 PM, Bo Berglund
> wrote:
> On Fri, 23 Feb 2024 10:33:19 +, Peter Davis via Openvpn-users
> openvpn-users@lists.sourceforge.net wrote:
>
> > But:
> >
> > # ls /etc/openvpn/Log/
> > #
> >
> > No
> On Friday, February 23rd, 2024 at 3:33 PM, Bo Berglund
> wrote:
> On Fri, 23 Feb 2024 11:36:39 +, Peter Davis via Openvpn-users
> openvpn-users@lists.sourceforge.net wrote:
>
> > > On Friday, February 23rd, 2024 at 2:50 PM, Bo Berglund
> > > bo.bergl.
> On Friday, February 23rd, 2024 at 3:54 PM, Gert Doering
> wrote:
> Hi,
>
> On Fri, Feb 23, 2024 at 12:20:32PM +, Peter Davis via Openvpn-users wrote:
>
> > 2024-02-23 15:46:43 Peter/172.20.1.254:44526 OPTIONS IMPORT: reading client
> &g
Hello,
If you use OpenVPN to access the Internet of another country, then receiving
data is usually more than sending it, and this traffic is considered suspicious
and blocked. Is there a way to send fake data?
Thank you.___
Openvpn-users mailing list
haved.
>
>
> And using shellcheck after editing/creating a script file also
>
> helps in getting rid of syntax errors etc...
>
> "sudo apt install shellcheck" if you do not already have it installed...
>
>
> --
> Bo Berglund
> Developer in Sweden
>
> On Sunday, February 25th, 2024 at 6:20 PM, Bo Berglund
> wrote:
> On Sun, 25 Feb 2024 15:31:20 +0100, Bo Berglund bo.bergl...@gmail.com wrote:
>
> > On Sun, 25 Feb 2024 10:50:05 +, Peter Davis via Openvpn-users
> > openvpn-users@lists.sourceforge.net wrote:
&
Hello,
Why can't I reload the OpenVPN service?
# systemctl reload openvpn
Failed to reload openvpn.service: Job type reload is not applicable for unit
openvpn.service.
#
# systemctl reload openvpn@ServerFailed to reload openvpn@Server.service: Job
type reload is not applicable for unit op
> On Monday, February 26th, 2024 at 12:05 AM, Bo Berglund
> wrote:
> On Sun, 25 Feb 2024 10:50:05 +, Peter Davis via Openvpn-users
> openvpn-users@lists.sourceforge.net wrote:
>
> > > Hello,
> > > I installed shellcheck and result is:
> >
> On Monday, February 26th, 2024 at 10:55 AM, Gert Doering
> wrote:
> Hi,
>
> On Sun, Feb 25, 2024 at 06:50:39PM +, Peter Davis via Openvpn-users wrote:
>
> > But my problem is that the script doesn't work at all. How do I find the
> > cause?
>
&g
nie.muc.de
Hi,
That script collected the data, but puts them in the "/tmp" directory and not
the file that I have defined.
_______
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
On 26/02/2024 10:59, Peter Davis via Openvpn-users wrote:
Hello,
Why can't I reload the OpenVPN service?
# systemctl reload openvpn
Failed to reload openvpn.service: Job type reload is not applicable for
unit openvpn.service.
#
# systemctl reload openvpn@Server
Failed to reload op
> On Monday, February 26th, 2024 at 2:20 PM, Jochen Bern
> wrote:
> On 24.02.24 11:35, Peter Davis via Openvpn-users wrote:
>
> > If you use OpenVPN to access the Internet of another country, then
> > receiving data is usually more than sending it, and this traffic is
&
> On Monday, February 26th, 2024 at 5:06 PM, Bo Berglund
> wrote:
> On Mon, 26 Feb 2024 10:07:14 +, Peter Davis via Openvpn-users
> openvpn-users@lists.sourceforge.net wrote:
>
> > Hi,
> > Thanks again.
> > I changed "LOG_FILE" to LOG_F
> On Wednesday, February 28th, 2024 at 6:10 PM, Gert Doering
> wrote:
> Hi,
>
> On Wed, Feb 28, 2024 at 12:52:17PM +, Peter Davis via Openvpn-users wrote:
>
> > # cat /tmp/Connections.log
> > 2024-02-28 16:16:51 - CommonName connected with IP 192.168.129.253
> On Wednesday, February 28th, 2024 at 5:01 PM, Bo Berglund
> wrote:
> On Wed, 28 Feb 2024 14:07:13 +0100, Marc SCHAEFER schae...@alphanet.ch wrote:
>
> > On Wed, Feb 28, 2024 at 12:52:17PM +, Peter Davis via Openvpn-users
> > wrote:
> >
> > > #
Hi!
We're using DNS Round-robin-records with a TTL of 300s for our openvpn
endpoint servers.
Yet, clients seem to reconnect to the same IP, although the DNS entry
has expired; the log usually shows something like:
2024-02-21 11:37:04 TCP/UDP: Preserving recently used remote address:
[AF
W dniu 3.04.2024 o 11:31, Ralf Hildebrandt via Openvpn-users pisze:
Hi!
We're using DNS Round-robin-records with a TTL of 300s for our openvpn
endpoint servers.
Yet, clients seem to reconnect to the same IP, although the DNS entry
has expired; the log usually shows something like:
2024-
to a
> now-disabled IP with some explicit denial (ICMP UNREACHABLE, RST, whatever),
No, since the machine might still be active and serving existing
openvpn sessions (basically we'd like to keep serving existing clients
and disallow new clients)
--
Ralf Hildebrandt
Charité - Universität
Hello,
I can connect to OpenVPN server through PC, but it is not possible from
Android. There is no such problem for other users. The logs are as follows:
2024-04-08 13:21:09 read UDPv4 [ECONNREFUSED]: Connection refused
(fd=6,code=111)
2024-04-08 13:21:19 read UDPv4 [ECONNREFUSED]: Connection
> On Monday, April 8th, 2024 at 1:39 PM, Gert Doering
> wrote:
> Hi,
>
> On Mon, Apr 08, 2024 at 10:03:20AM +, Peter Davis via Openvpn-users wrote:
>
> > 2024-04-08 13:21:09 read UDPv4 [ECONNREFUSED]: Connection refused
> > (fd=6,code=111)
>
>
ring - Munich, Germany g...@greenie.muc.de
Hello,
How can I verify that DNS is returning the correct information?
___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
50 570 155
ralf.hildebra...@charite.de
https://www.charite.de
_______
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
Hello,
One of my users has just had his work laptop changed, and now when he
connects to our network via OpenVPN, his connection isn't working (seems
up but no packet gets through), and in the server logs, we're getting
the classical "MULTI: bad source address from clie
Hello,
Le 29/04/2024 à 09:08, Gert Doering a écrit :
Hi,
On Mon, Apr 29, 2024 at 03:22:38AM +, tincantech via Openvpn-users wrote:
FTR, the reason that the square brackets [] do not show information is
to preserve Client privacy.
This is news to me...
To me too.
Before posting I had a
Published articles say it affects all VPNs due seemingly to a DHCP
man-in-the-middle attack. I was under the impression that VPNs were encrypted
end-to-end from the very start and thus don't see how a man-in-the-middle could
have any effect. Am I mis-understanding the architecture for Op
Tennison via Openvpn-users
wrote:
> Published articles say it affects all VPNs due seemingly to a DHCP
> man-in-the-middle attack. I was under the impression that VPNs were
> encrypted end-to-end from the very start and thus don't see how a
> man-in-the-middle could have any
OpenVPN 3 Linux v22_dev (Limited Release)
This is a limited release primarily targeting Fedora 39 and newer plus
Ubuntu 24.04. Other Linux distributions shipping glib2 version 2.76
or newer will also benefit from this release.
This release contains a massive re-factoring of the D-Bus
s an option only needed to be used on the server side.
--
kind regards,
David Sommerseth
OpenVPN Inc
___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
Was working on a remote system (a local NIC on a network not associated with
the one I was on and the OpenVPN tun interface) with a request to change the
local system's IP address. Fortunately I warned the remote staff that I might
need their assistance. I added the new local IP ad
Thanks for replying, I'll look into the things you mentioned.
On Monday, July 8, 2024 at 01:33:01 AM CDT, Gert Doering
wrote:
Hi,
On Sun, Jul 07, 2024 at 10:33:35PM +, Leroy Tennison via Openvpn-users
wrote:
> Was working on a remote system (a local NIC on a net
After some testing I determined that this was my fault. i wasn't connecting
via the IP address I removed and it wasn't the default route. It was the
subnet-specific route. In order to change the IP address on a local subnet
from OpenVPN:
- Add the new ip first such
I understand, in this case it was a client.
On Thursday, July 11, 2024 at 01:27:22 AM CDT, Bo Berglund
wrote:
On Thu, 11 Jul 2024 00:37:26 + (UTC), Leroy Tennison via Openvpn-users
wrote:
> After some testing I determined that this was my fault. i wasn't connecting
>
Where does openvpn GUI (on Windows) store the user's password, if the
user chooses to store the credentials?
--
Ralf Hildebrandt
Charité - Universitätsmedizin Berlin
Geschäftsbereich IT | Abteilung Netz | Netzwerk-Administration
Invalidenstraße 120/121 | D-10115 Berlin
Tel. +49 30 450 57
Hello,
By default, OpenVPN is running on the address 0.0.0.0. Is this safe for a web
server?
Thank you.
___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
A colleague of mine recently noted the (new?) option in the openvpn
GUI (Windows) preferences dialogue; in contrast to the other options
it was no translated into German.:
Persistent Connections
[x] Auto [] Manual [] Disable
What exactly does that do / which option in openvpn does this
Hi
We are using OpenVPN 2.6.0 in a site-to-site configuration and using OpenSSL
3.0.10. We have traffic generator (Ixia breakingpoint) connected on both ends
to test and measure throughput. We see ~30% drop in the throughput when
compared to OpenVPN 2.5.9. We checked the commits between these
* nikhil bhandari via Openvpn-users :
> Hi
> We are using OpenVPN 2.6.0 in a site-to-site configuration and using OpenSSL
> 3.0.10. We have traffic generator (Ixia breakingpoint) connected on both ends
> to test and measure throughput. We see ~30% drop in the throughput when
&
We have a client that disconnected and reconnected again (on another
of our gateways):
2024-08-16 06:59:22 gw166 openvpn-udp
rebxxxdl/2001:16b8:b3b4:5b00:89ba:f323:d919:5b39 CC-EEN exit message received
by peer
(client: Mac, Tunnelblick, openvpn 2.6.)
...
2024-08-16 06:59:30 gw164 openvpn-udp
Hello,
I checked the OpenVPN log and saw something like below:
OpenVPN CLIENT LIST
Updated,2024-08-25 09:15:08
Common Name,Real Address,Bytes Received,Bytes Sent,Connected Since
UNDEF, X.X.X.X:53719,3445,326,2024-08-25 09:14:32
UNDEF, X.X.X.X:56244,1596,128,2024-08-25 09:14:59
ROUTING TABLE
Hello,
When you want to connect to an OpenVPN server, but the client cannot connect to
the server, what tools and methods do you use for troubleshooting?
Thank you.___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https
traße 120/121 | D-10115 Berlin
Tel. +49 30 450 570 155
ralf.hildebra...@charite.de
https://www.charite.de
_______
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
OpenVPN 3 Linux v23 (Stable release)
The v23 release is stable release which expands the distribution target
since v22_dev was released. The goal for this step was to stabilize the
codebase which was migrated to GDBus++ and the new Meson building
system. The next release (v24) will also be a
Hello,
I have an OpenVPN server that I use to share the internet. Users connect to
this server and use its internet. When a user connects to the OpenVPN server,
he\she can ping the IP addresses of other servers on the network. How can I
create a restriction?
Thank you
ourse, via the OpenVPN directive "push" you can specify routes, and
one could think in the first place that it could be sufficient to only
specify the routes (and/or IP addresses) the clients are allowed to
connect to, but it is not the case, as it is still possible for an
OpenVPN c
OpenVPN 3 Linux v24 (Stable release)
The v24 release is another stable release. This resolves issues
reported in several earlier releases and improves OpenVPN 3 Linux
in several areas.
* Improvement: Add --dns option support
DNS resolver settings has been troublesome for many years, since
We have the requirement to make the key & cert used within an openvpn
connection profile not exportable.
So we thought it would be a sensible approach to install key & cert
into the IOS Keychain, but currently I'm unsure if openvpnConnect
(3.5.1) can actually use them.
The documenta
kip
> it if you could. If the answer is "Yes, please!", then you should look
> into the feature which I believe arrived in OpenVPN 2.6
>
> --peer-fingerprint
>
> That just requires clients to have the server-side certificate
> fingerprint listed and the server the f
ort-forward on the
> router to the new IP address.
This is more an advice for when you're doing a new VPN setup ...
Ask yourself if you really need the CA layer at all - if you would skip
it if you could. If the answer is "Yes, please!", then you should look
into the feature wh
On 31/03/2025 13:06, Bo Berglund wrote:
>
> Now I have looked around in searches and found that apparently my server and
> serverlocal services are controlled by systemd using this common file for the
> services:
>
> /usr/lib/systemd/system/openvpn-server@.service
>
> A
print is given to the peer-fingerprint option. IIRC, on *older*
OpenVPN versions on the client side (not supporting peer-fingerprint),
the server certificate can be used in the "blob" in the client config.
> We need the phone to also be able to connect to the server and be geolocat
OpenVPN 3 Linux v24 (Bugfix/security release)
The v24.1 release is a small security and bugfix release.
* Security: CVE-2025-3908 - openvpn3-admin init-config follows symlink
Wolfgang Frisch from the SUSE security team reach out and
notified us of a potential issue with the openvpn3-admin
On 12/05/2025 11:52, Stefanie Leisestreichler (Febas) wrote:
> Hi.
> I have a fresh install of openvpn 3.5.0.8 on arch and try to get
> autostart for systemd working.
>
> The log is displaying this error:
> Options error: --key fails with 'gateway25.key': Permission d
On 15/05/2025 12:04, Stefanie Leisestreichler (Febas) wrote:
> On 5/15/25 11:49, David Sommerseth wrote:
>
>>
>> Try to change the owner of the key file from root to openvpn.
>>
>> The openvpn-server@.service and openvpn-client@.service units has been
>> writte
On 15/05/2025 15:30, Stefanie Leisestreichler (Febas) wrote:
> On 5/15/25 14:48, David Sommerseth wrote:
[...snip...]
>>
>> Not when starting via systemd. In this case, when the `User=openvpn` is
>> set in the service unit file, systemd will drop to that user and set the
>
Hi,
For the past few weeks the "new" OpenVPN forums ( [
https://forums-new.openvpn.net/ | https://forums-new.openvpn.net/ ] ) have been
overrun by Call-Girl spam, and it is impossible to actually reach any of the
forums/messages.
Is there a plan to get it cleaned up?
If not, c
Hello,
I used the following commands to generate the Server Certificate:
# cp -r /usr/share/easy-rsa /etc/openvpn/
# cd /etc/openvpn/easy-rsa
# mv vars.example vars
# nano vars
export KEY_COUNTRY="US"
export KEY_PROVINCE="CA"
export KEY_CITY="NY"
export KEY_ORG
Hello,
How can I find out which websites a client has visited? Does this require
traffic decryption?
Thank you.___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
nough
technical skill, they can circumvent it.
Second point, you have unencrypted traffic at the OpenVPN server (the web
traffic can't go out OpenVPN-encrypted to a web server). However, doing what
you want is non-trivial. Unless you can find a package which can monitor
traffic and filter for htt
Hello,
I have combined OpenVPN with Tor and when clients connect to the OpenVPN
server, their connection is routed into the Tor network.
The Tor configuration is:
RunAsDaemon 1
DataDirectory /var/lib/tor_OpenVPN
MaxCircuitDirtiness 3600
VirtualAddrNetwork 10.192.0.0/10
AutomapHostsOnResolve 1
,X.X.X.X:51162,2025-08-03 19:30:35
GLOBAL STATS
Max bcast/mcast queue length,0
END
I don't have such a user on the server. What is it?
Thank you.
___
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/
at no matter how you set
--fragment, or whatever OpenVPN deduces automatically, any fragmentation
that OpenVPN may perform will be undone by each and every stateful
firewall in between client and server. Because a stateful firewall will
reassemble fragmented packets before inspection in order to
On 08-06-18 19:45, Gert Doering wrote:
One thing you should be aware of is that no matter how you set
--fragment, or whatever OpenVPN deduces automatically, any fragmentation
that OpenVPN may perform will be undone by each and every stateful
firewall in between client and server.
No
Dear all,
I'm trying to setup an openvpn 2fa setup, i'm copying an current working CA
with certificates setup to one with
https://github.com/evgeny-gridasov/openvpn-otp aswell.
The initial setup works good, but after +/- 15 minutes the connection wants to
re-authenticate. Whi
I allready tried setting re-neg 0 on server and re-neg 0 on client, didn't make
a difference :(
>Friday, January 18, 2019 3:49 PM +01:00 from Erik van Dam via Openvpn-users
>:
>
>Dear all,
>
>I'm trying to setup an openvpn 2fa setup, i'm copying an current wor
Thank you so much Gert, you fixed my problem!
Greetings,
Erik van Dam
>Friday, January 18, 2019 4:52 PM +01:00 from Gert Doering
>:
>
>Hi,
>
>On Fri, Jan 18, 2019 at 05:11:28PM +0300, Erik van Dam via Openvpn-users wrote:
>> The initial setup works good, but
e lines. But of course, except for special needs, VPN
providers would not implement their systems that way.
I think the scenario as in your questions must be applying to the second kind
of setup as I described.
--- Original Message ---
On Tuesday, August 1st, 2023 at 8:28 AM, Jason Long vi
Hello everyone!
I have a question. We're using OpenVPN Connect 3.7.2 (4253) on Windows and
would like to disable auto reconnection when the connection is lost.
We use 2FA and have the following problem: If the connection drops briefly, the
VPN client repeatedly attempts to establish a conne
Subject: Critical OpenVPN Zero-Day Flaws Affecting Millions of Endpoints Across
the Globe
Good day from Singapore,
I have just read this article and I would like to share it with all of you here.
Article: Critical OpenVPN Zero-Day Flaws Affecting Millions of Endpoints Across
the Globe
Link
On Monday, May 13th, 2024 at 9:08 PM, Gert Doering wrote:
> Hi,
>
> On Mon, May 13, 2024 at 12:59:06PM +, Turritopsis Dohrnii Teo En Ming via
> Openvpn-users wrote:
>
> > Subject: Critical OpenVPN Zero-Day Flaws Affecting Millions of Endpoints
> > Across the G
701 - 800 of 804 matches
Mail list logo
