Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    How to split openvpn config file

    Scheduled Pinned Locked Moved OpenVPN
    4 Posts 2 Posters 1.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      shetu
      last edited by

      Hello,
      I have a working pfsense openvpn server. I split openvpn config file for "Grandstream GXP1615" and get 4 files (ca.crt, client.key, ta.key, user.crt).
      This ip phone has three filed (OpenVPN® CA, OpenVPN® Certificate. OpenVPN® Client Key).
      Here is my full openvpn config file.
      ||dev tun
      persist-tun
      persist-key
      ncp-ciphers AES-128-GCM:AES-256-CBC
      cipher AES-256-CBC
      auth SHA512
      tls-client
      client
      resolv-retry infinite
      remote 192.168.25.39 1196 udp
      verify-x509-name "Pfsense_OPENVPN_TUN_cert" name
      remote-cert-tls server
      comp-lzo no
      explicit-exit-notify

      <ca>
      -----BEGIN CERTIFICATE-----
      MH4R52Bw35UHE08HANb5ki2zXV
      -----END CERTIFICATE-----
      </ca>
      <cert>
      -----BEGIN CERTIFICATE-----
      MIIGsz7kNBdBk4UfwY7gT9/J6QQvYBBETr/ZKNY
      -----END CERTIFICATE-----
      </cert>
      <key>
      -----BEGIN PRIVATE KEY-----
      MIIJRAIBADANVLN28Bb0Ad7LEG7Gf/JpFfHBEF0wZAeLgnMHq3O3Tq4yPiV
      x9WJGmCu1JId0mKyzc99Y+ugGTnz8YmW
      -----END PRIVATE KEY-----
      </key>
      key-direction 1
      <tls-auth>

      2048 bit OpenVPN static key

      -----BEGIN OpenVPN Static key V1-----
      57c07a4140ed7197953958494f37
      -----END OpenVPN Static key V1-----
      </tls-auth>||

      DaddyGoD 1 Reply Last reply Reply Quote 0
      • DaddyGoD
        DaddyGo @shetu
        last edited by

        @shetu said in How to split openvpn config file:

        I split openvpn config file for "Grandstream GXP1615"

        Hi,

        This may be something closer (GXP1620?):

        https://forums5.grandstream.com/t/gxp1620-registration-openvpn-problems/15019

        Cats bury it so they can't see it!
        (You know what I mean if you have a cat)

        S 1 Reply Last reply Reply Quote 0
        • S
          shetu @DaddyGo
          last edited by

          @daddygo Hello
          I manage to connect openvpn server from GS. There is new problem arise. When Grand stream connect openvpn, I can not browse GS web gui. I have to stop openvpn server from pfsense to access GS web gui.
          I post my openvpn server settings.
          I disable TLS key because gs web gui I can not upload tls file and I do not understand Compression settings. Do I need this or not.
          Thanks.

          5.jpg 4.jpg 3.jpg 2.jpg 1.jpg

          DaddyGoD 1 Reply Last reply Reply Quote 0
          • DaddyGoD
            DaddyGo @shetu
            last edited by

            @shetu said in How to split openvpn config file:

            When Grand stream connect openvpn, I can not browse GS web gui.

            I have seen many GrandStream devices, for example my ATA stuff is GS HT802.
            (I don't know yours specifically, but I guess the philosophy is the same)

            There is a separate MGMT interface configuration option, maybe to use when OVPN is configured.

            c606c79c-bfa1-497c-ab67-2c0bda60dabb-image.png

            Cats bury it so they can't see it!
            (You know what I mean if you have a cat)

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.