Code: Select all
openvpn --genkey --secret static.key
client v2.4.11
daemon
dev tun
remote [server IP]
rport 1100
lport 1100
proto udp
ifconfig 10.0.0.2 10.0.0.1
secret static.key 1
writepid /run/tunpid
log-append /var/openvpn.log
verb 4
I copied previous config of server v2.4 to a new server but on v2.5
noticing that "Cipher BF-CBC not supported" Error on v2.5, I add one line to the config, and now the config of the server:
server v2.5.9
dev tun0
lport 1100
proto udp
ifconfig 10.0.0.1 10.0.0.2
cipher AES-256-CBC
secret static.key 0
log-append /var/openvpn.log
But now a new issue appears on openvpn.log of server:
Code: Select all
2023-09-16 13:51:36 net_addr_ptp_v4_add: 10.0.0.1 peer 10.0.0.2 dev tun0
2023-09-16 13:51:36 Could not determine IPv4/IPv6 protocol. Using AF_INET
2023-09-16 13:51:36 UDPv4 link local (bound): [AF_INET][undef]:1100
2023-09-16 13:51:36 UDPv4 link remote: [AF_UNSPEC]
2023-09-16 14:01:17 Authenticate/Decrypt packet error: cipher final failed
2023-09-16 14:01:18 Authenticate/Decrypt packet error: cipher final failed
2023-09-16 14:01:21 Authenticate/Decrypt packet error: cipher final failed
2023-09-16 14:01:25 Authenticate/Decrypt packet error: cipher final failed
2023-09-16 14:01:27 Authenticate/Decrypt packet error: cipher final failed
2023-09-16 14:01:37 Authenticate/Decrypt packet error: cipher final failed
Is the cipher between a pair of server and client permanently disabled?