OPNsense Forum

Archive => 19.1 Legacy Series => Topic started by: Bytechanger on May 20, 2019, 03:33:45 pm

Title: OpenVPN tls-crypt instead of tls-auth
Post by: Bytechanger on May 20, 2019, 03:33:45 pm

Hi,

I want to move openvpn from my raspi to opnsense.
But where can I set tls-crypt?
I only see tls-auth configuration.

Greets

Byte

Title: Re: OpenVPN tls-crypt instead of tls-auth
Post by: mimugmail on May 20, 2019, 04:52:56 pm

It's not possible via GUI, sorry.

Title: Re: OpenVPN tls-crypt instead of tls-auth
Post by: Bytechanger on May 20, 2019, 05:51:14 pm

Thanks for fast answer.

Can I configure it via ssh?
If possible, how?
I realy want to change my openvpn server.


Greets

Byte

Title: Re: OpenVPN tls-crypt instead of tls-auth
Post by: Bytechanger on May 20, 2019, 09:07:04 pm

OK, changing '/var/etc/openvpn/server1.conf' doesn´t work, because after server restart, the .conf file is written back to old value again.

Some other possibility ?

Greets

Byte

Title: Re: OpenVPN tls-crypt instead of tls-auth
Post by: franco on May 21, 2019, 06:30:52 pm

You can use OpenVPN manually like on FreeBSD with rc.conf and manual config files. The GUI will definitely overwrite its own generated files for safety.

Or open a feature request (if one does not exist yet) describing the config changes that you want to make. It would help a great deal to implement the feature if the user know what needs to be changed in the config.

https://github.com/opnsense/core/issues/new?assignees=&labels=&template=feature_request.md&title=


Cheers,
Franco

Title: Re: OpenVPN tls-crypt instead of tls-auth
Post by: Bytechanger on May 22, 2019, 07:08:47 am

Thanks,

since jan-2018 there is a future wish.
https://github.com/opnsense/core/issues/2048

But it seems to be difficult.


Greets

Byte