I have an OpenVPN server on windows. And it works normally.
But now i need to integrate special OID check. I know, that there is no such check in OpenVPN server, but i know that it could start a script during the client connect by using tls-verify function. So i want to use PowerShell or VBS script to make this check.
But when i try to use tls-verify
Code: Select all
tls-verify 'C:\\Windows\\System32\\WindowsPowerShell\\v1.0\\powershell.exe -File C:\\Program\ Files\\OpenVPN\\ssl\\check_cert.ps1'
Code: Select all
tls-verify 'C:\\Windows\\System32\\wscript.exe C:\\Program\ Files\\OpenVPN\\ssl\\test.vbs'
Code: Select all
2023-05-24 08:48:40 us=656000 client_ip:65264 UDPv4 READ [327] from [AF_INET]client_ip:65264: P_CONTROL_V1 kid=0 [ 2235288690 113480254 2535309037 1873955056 2300991625 2533325841 593398453 394794240 2916 1839545856 6 3375258123 4000241856 3628720822 1275172882 2785250305 755166229 683691368 2779059848 2910518607 1313321436 3283092950 3685897126 4
2023-05-24 08:48:40 us=656000 client_ip:65264 TLS Error: Unroutable control packet received from [AF_INET]client_ip:65264 (si=3 op=P_CONTROL_V1)
VBS:
Code: Select all
WScript.Quit(0)
Code: Select all
Write-Host 0
So the question is: is it possible to use VBS or PowerShell script to do some custom checks on tls-verify step, and what should script return?