• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

openvpn-client-export not exporting correctly

Scheduled Pinned Locked Moved pfSense Packages
5 Posts 3 Posters 1.8k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • A
    albgen
    last edited by Jan 15, 2021, 7:41 PM

    hello,

    i see the following error on OpenVPN log.

    Fri Jan 15 20:38:16 2021 OPTIONS ERROR: failed to negotiate cipher with server. Add the server's cipher ('AES-128-CBC') to --data-ciphers (currently 'AES-128-GCM') if you want to connect to this server.
    Fri Jan 15 20:38:16 2021 ERROR: Failed to apply push options
    Fri Jan 15 20:38:16 2021 Failed to open tun/tap interface

    to fix it i have to manually edit the file and remove the following:

    data-ciphers AES-128-GCM
    data-ciphers-fallback AES-128-CBC

    and replace with:

    cipher AES-128-GCM

    any idea why it is exporting like this?

    B 1 Reply Last reply Jan 16, 2021, 8:25 AM Reply Quote 0
    • B
      bingo600 @albgen
      last edited by Jan 16, 2021, 8:25 AM

      @albgen

      Could it be that you are exporting to an older (legacy) client, and haven't "ticked" that in the export gui ?

      d3335268-3cd6-4c87-8e62-b54ff83457c0-image.png

      If you find my answer useful - Please give the post a 👍 - "thumbs up"

      pfSense+ 23.05.1 (ZFS)

      QOTOM-Q355G4 Quad Lan.
      CPU  : Core i5 5250U, Ram : 8GB Kingston DDR3LV 1600
      LAN  : 4 x Intel 211, Disk  : 240G SAMSUNG MZ7L3240HCHQ SSD

      A 1 Reply Last reply Jan 16, 2021, 10:55 AM Reply Quote 0
      • A
        albgen @bingo600
        last edited by Jan 16, 2021, 10:55 AM

        @bingo600 it is a new pfsense installation. Installed client export package and also the latest openvpn client on windows 10.

        Regarding your question, no i have not tick that...

        1 Reply Last reply Reply Quote 0
        • H
          huseby_lucas
          last edited by Feb 9, 2021, 3:22 PM

          I also had this issue, thank you @bingo600 for the quick fix. Checking the box for legacy client allowed me to establish a connection. Is there a way to prevent this setting from being applied? how can i update my version of openvpn?

          B 1 Reply Last reply Feb 10, 2021, 8:02 AM Reply Quote 0
          • B
            bingo600 @huseby_lucas
            last edited by Feb 10, 2021, 8:02 AM

            @huseby_lucas

            I would expect it to be your "PC / Remote client" that is a 2.4.xx version.

            You could download an upgrade from OpenVPN.

            If you find my answer useful - Please give the post a 👍 - "thumbs up"

            pfSense+ 23.05.1 (ZFS)

            QOTOM-Q355G4 Quad Lan.
            CPU  : Core i5 5250U, Ram : 8GB Kingston DDR3LV 1600
            LAN  : 4 x Intel 211, Disk  : 240G SAMSUNG MZ7L3240HCHQ SSD

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
              This community forum collects and processes your personal information.
              consent.not_received