what should be included in the client ovpn markers?

Need help configuring your VPN? Just post here and you'll get that help.
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
goldduo
OpenVpn Newbie
Posts: 16
Joined: Sat Jan 09, 2021 10:12 am

what should be included in the client ovpn markers?

Post by goldduo » Mon Jan 11, 2021 2:58 pm

i am using a windows openvpn server, and a windows client.
in the client.ovpn config file, there are 4 markers: <ca>, <cert>, <key>, and <tls-auth>
<tls-auth> should have the contents of ta.key?
what should be in <cert>? is it the contents of server.crt? or client.crt?
how about <key>? is it from server.key or client.key?

thanks

goldduo
OpenVpn Newbie
Posts: 16
Joined: Sat Jan 09, 2021 10:12 am

Re: what should be included in the client ovpn markers?

Post by goldduo » Tue Jan 12, 2021 12:21 am

my understanding is the <cert> and <key> markers are not required if i specify file paths to client.crt and client.key??

so to connect, the client sends ca.crt, asking for specific ip and port number. the server recognizes the ca.crt, and knows that this is a client. now how does that server authenticate the client? it automatically reaches into the default relative path openvpn\easy-rsa\pki to grab and compare the client.crt, and client.key?

Post Reply