Strony

wtorek, 5 sierpnia 2008

openvpn configuration, some problems with understanding certs

I have some problems with understanding the certs things... but I found rather clear howto at openvpn site:

Setting up your own Certificate Authority (CA) and generating certificates and keys for an OpenVPN server and multiple clients.

next tip, for much more security in openvpn is setting:

server side:

tls-auth /path/to/ta.key 0


client side:

tls-auth /path/to/ta.key 1


first you should generate this cert by:

openvpn --genkey --secret ta.key


and maybe changing the default blowfish alghoritm (128bit) with 256-bit AES by adding:

cipher AES-256-CBC

1 komentarze:

Recent Links Tagged With "openvpn" - JabberTags pisze...

[...] public links >> openvpn openvpn configuration, some problems with understanding certs Saved by eiuv on Wed 18-2-2009 Untangle Gateway Platform can be virtualized for firewall services [...]