OpenVPN tls-crypt

Started by Dronov, October 13, 2017, 03:07:57 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
October 13, 2017, 03:07:57 PM
Hi!

I was recently forced to review my OpenVPN configuration, and I quickly realised that I have OpenVPN 2.4.x on all devices. I immediately thought about turning on tls-crypt, but I am not sure what would be the most elegant way to do so. It looks like the GUI supports tls-auth only.

I can surely dump the secret somewhere (using SSH) and just put tls-crypt /path/to/key in the "advanced" text box. But I was wondering if there is a more transparent way to achieve it? Ideally with all steps done via the web GUI and thus keeping the tls-crypt key as a part of the backup XML.

Thanks!
December 21, 2017, 07:17:22 AM #1
+1 for tls-crypt support. This reduces the ability for middleboxes to detect the VPN traffic as OpenVPN and block it.
Print
Go Up Pages1
User actions