Skip to content

Commit

Permalink
fix(openvpn): update config for v2.5
Browse files Browse the repository at this point in the history 
Fixes warning:
* Note: Treating option '--ncp-ciphers' as  '--data-ciphers' (renamed in OpenVPN 2.5).
* --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.

Source: https://community.openvpn.net/openvpn/wiki/CipherNegotiation
  • Loading branch information
@Rotzbua
Rotzbua committed Aug 15, 2023
1 parent fb03802 commit 64be4e9
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion openvpn-server/conf/server.conf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,7 +10,8 @@ key /etc/openvpn/secrets/server.key # This file should be kept secret

tls-version-min 1.3 or-highest
tls-cipher TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384
ncp-ciphers AES-256-GCM
data-ciphers AES-256-GCM
data-ciphers-fallback -
auth SHA256
dh none
ecdh-curve secp384r1
Expand Down

0 comments on commit 64be4e9

Please sign in to comment.