"
Hab ich mehrfach am laufen.
Keine Probleme.
Port in der Firewall geƶffnet?
Keine Probleme.
Port in der Firewall geƶffnet?
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#1
German - Deutsch / Re: Mikrotik Router soll sich per WG zu Opnsense verbinden.
October 31, 2024, 12:26:14 PM #2
23.1 Legacy Series / Re: OPNsense 23.1.2 OpenVPN
March 26, 2023, 01:04:46 PMQuote from: nmichael200 on March 25, 2023, 02:52:46 PM
Set "Encryption algorithm (fallback)" to NONE
and set in Advanced:
--cipher AES-256-CBC
https://forum.opnsense.org/index.php?topic=27394.msg160740#msg160740
With Update 23.1.4 you can use again: "Encryption algorithm (deprecated)"
Restart openvpn server an it works
#3
Virtual private networks / Re: OpenVPN Client stopped working after recent update
March 26, 2023, 12:59:46 PM
HI,
With Update OPNsense 23.1.4
" openvpn: reintroduce "cipher" keyword for older clients "
Now it works without my workaround.
With Update OPNsense 23.1.4
" openvpn: reintroduce "cipher" keyword for older clients "
Now it works without my workaround.
#4
Virtual private networks / Re: OpenVPN Client stopped working after recent update
March 13, 2023, 08:09:35 PMQuote from: franco on March 10, 2023, 08:28:31 PM
So OpenVPN doesn't translate its own deprecations? What OpenVPN version is used on the client end?
For Test reasons I used an old Client (Sophos SSL) ist based on OpenVPN 2.3.8
With OpenVPN connect Client 3.3.6 it will use 'cipher AES-256-GCM' (with set Encryption algorithm (fallback) to 'AES-256-CBC') an the connection works.
I think the Server setting 'Encryption algorithm (fallback)' don't work correct.
Kind rgds,
Chris
#5
Virtual private networks / Re: OpenVPN Client stopped working after recent update
March 10, 2023, 01:53:19 PM
HI,
here the same.
After Update 23.1 to 23.1.3 openvpn stop work.
Failure Log:
PUSH: No common cipher between server and client. Server data-ciphers: 'AES-256-GCM:AES-128-GCM', client supports cipher 'AES-256-CBC'
Log on Windows Client:
WARNING: 'cipher' is present in local config but missing in remote config, local='cipher AES-256-CBC'
I think the Problem is this in the changelog for Version 23.1.3
openvpn: replace authentication handler to prepare for upcoming OpenVPN 2.6 with deferred authentication
openvpn: rename -cipher option to --data-ciphers-fallback and adjust GUI accordingly
The Bug ist here:
openVPn Server Config:
" Encryption algorithm (fallback) " dosn't work.
My work around:
Set "Encryption algorithm (fallback)" to NONE
and set in Advanced:
--cipher AES-256-CBC
With this setting my clients can reconnect and it works!
here the same.
After Update 23.1 to 23.1.3 openvpn stop work.
Failure Log:
PUSH: No common cipher between server and client. Server data-ciphers: 'AES-256-GCM:AES-128-GCM', client supports cipher 'AES-256-CBC'
Log on Windows Client:
WARNING: 'cipher' is present in local config but missing in remote config, local='cipher AES-256-CBC'
I think the Problem is this in the changelog for Version 23.1.3
openvpn: replace authentication handler to prepare for upcoming OpenVPN 2.6 with deferred authentication
openvpn: rename -cipher option to --data-ciphers-fallback and adjust GUI accordingly
The Bug ist here:
openVPn Server Config:
" Encryption algorithm (fallback) " dosn't work.
My work around:
Set "Encryption algorithm (fallback)" to NONE
and set in Advanced:
--cipher AES-256-CBC
With this setting my clients can reconnect and it works!
Pages1
