Wireshark showing no encryption in OpenVPN
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
-
bonzi200x
- OpenVpn Newbie
- Posts: 1
- Joined: Thu Mar 10, 2011 10:01 pm
Wireshark showing no encryption in OpenVPN
I have cipher BF-CBC uncommented in both server and client and wireshark is listening to tap0 but it is not showing any encryption. Am I doing something wrong here?
-
Bebop
- Forum Team
- Posts: 301
- Joined: Wed Dec 15, 2010 9:24 pm
Re: Wireshark showing no encryption in OpenVPN
Depending on your setup. More detail required.bonzi200x wrote:I have cipher BF-CBC uncommented in both server and client and wireshark is listening to tap0 but it is not showing any encryption. Am I doing something wrong here?
Do you mean that you have Wireshark on your server end-point TAP device?
If yes, then the data is decrypted at the end point, and data is seen as plain text.
Think about it more for a second. If the data were not decrypted at each end, then how would the data ever be used?
The data will be encrypted at all locations between you and the endpoint, but not at the endpoint itself.
At least thats how it is for TUN. Assuming TAP is no different.
The cure for boredom is curiosity
-
janjust
- Forum Team
- Posts: 2703
- Joined: Fri Aug 20, 2010 2:57 pm
- Location: Amsterdam
- Contact:
Re: Wireshark showing no encryption in OpenVPN
the 'tap0' interface is *inside* the tunnel and hence should not be encrypted.
If you want to see encrypted traffic listen on the 'eth0' interface (or whichever i/f OpenVPN is configured over).
If you want to see encrypted traffic listen on the 'eth0' interface (or whichever i/f OpenVPN is configured over).