OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of chrishh »
  • Show Posts »
  • Messages
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Messages - chrishh

Pages: [1]
1
German - Deutsch / Re: Mikrotik Router soll sich per WG zu Opnsense verbinden.
« on: October 31, 2024, 12:26:14 pm »
Hab ich mehrfach am laufen.
Keine Probleme.
Port in der Firewall geöffnet?

2
23.1 Legacy Series / Re: OPNsense 23.1.2 OpenVPN
« on: March 26, 2023, 01:04:46 pm »
Quote from: nmichael200 on March 25, 2023, 02:52:46 pm
Set  "Encryption algorithm (fallback)" to NONE
and set in  Advanced:
--cipher AES-256-CBC

https://forum.opnsense.org/index.php?topic=27394.msg160740#msg160740

With Update 23.1.4 you can use again: "Encryption algorithm (deprecated)"
Restart openvpn server an it works

3
Virtual private networks / Re: OpenVPN Client stopped working after recent update
« on: March 26, 2023, 12:59:46 pm »
HI,

With Update OPNsense 23.1.4
" openvpn: reintroduce "cipher" keyword for older clients "

Now it works without my workaround.


4
Virtual private networks / Re: OpenVPN Client stopped working after recent update
« on: March 13, 2023, 08:09:35 pm »
Quote from: franco on March 10, 2023, 08:28:31 pm
So OpenVPN doesn't translate its own deprecations? What OpenVPN version is used on the client end?

For Test reasons I used an old Client (Sophos SSL) ist based on OpenVPN 2.3.8

With OpenVPN connect Client 3.3.6 it will use 'cipher AES-256-GCM' (with set  Encryption algorithm (fallback) to 'AES-256-CBC') an the connection works.

I think the Server setting 'Encryption algorithm (fallback)' don't work correct.

Kind rgds,
Chris

5
Virtual private networks / Re: OpenVPN Client stopped working after recent update
« on: March 10, 2023, 01:53:19 pm »
HI,

here the same.
After Update 23.1 to 23.1.3 openvpn stop work.
Failure Log:
 PUSH: No common cipher between server and client. Server data-ciphers: 'AES-256-GCM:AES-128-GCM', client supports cipher 'AES-256-CBC'
Log on Windows Client:
WARNING: 'cipher' is present in local config but missing in remote config, local='cipher AES-256-CBC'

I think the Problem is this in the changelog for Version 23.1.3
openvpn: replace authentication handler to prepare for upcoming OpenVPN 2.6 with deferred authentication
openvpn: rename -cipher option to --data-ciphers-fallback and adjust GUI accordingly


The Bug ist here:
openVPn Server Config:
" Encryption algorithm (fallback)   " dosn't work.


My work around:
Set  "Encryption algorithm (fallback)" to NONE
and set in  Advanced:
--cipher AES-256-CBC


With this setting my clients can reconnect and it works!





Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2