OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Archive »
  • 17.7 Legacy Series »
  • OpenVPN tls-crypt
« previous next »
  • Print
Pages: [1]

Author Topic: OpenVPN tls-crypt  (Read 3708 times)

Dronov

  • Newbie
  • *
  • Posts: 12
  • Karma: 2
    • View Profile
OpenVPN tls-crypt
« on: October 13, 2017, 03:07:57 pm »
Hi!

I was recently forced to review my OpenVPN configuration, and I quickly realised that I have OpenVPN 2.4.x on all devices. I immediately thought about turning on tls-crypt, but I am not sure what would be the most elegant way to do so. It looks like the GUI supports tls-auth only.

I can surely dump the secret somewhere (using SSH) and just put tls-crypt /path/to/key in the "advanced" text box. But I was wondering if there is a more transparent way to achieve it? Ideally with all steps done via the web GUI and thus keeping the tls-crypt key as a part of the backup XML.

Thanks!
Logged

athurdent

  • Full Member
  • ***
  • Posts: 192
  • Karma: 19
    • View Profile
Re: OpenVPN tls-crypt
« Reply #1 on: December 21, 2017, 07:17:22 am »
+1 for tls-crypt support. This reduces the ability for middleboxes to detect the VPN traffic as OpenVPN and block it.
Logged
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • Archive »
  • 17.7 Legacy Series »
  • OpenVPN tls-crypt
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2023 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2