Incorrect tls-auth setting for Peer to Peer SSL/TLS OpenVPN with tls-auth

jlc

Hi,

PFsense 2.1 OpenVPN Client.

In order to connect to my vpn provider I need to manually change the tls-auth direction in /var/etc/openvpn/client.conf.

From: tls-auth /var/etc/openvpn/client2.tls-auth 1        To: tls-auth /var/etc/openvpn/client2.tls-auth

See this for reference:  https://redmine.pfsense.org/issues/1198.

My question is, How can I have pfsense write the corect line in the client.conf file. I can change the line manually and it works until reboot, I want to make it persistent.

Thanks

DirtDiver

I have the same problem with my provider. Did you find a solution to this?

jimp

You can copy that tls auth key to a file somewhere else (e.g. /root/ta.key) and then use the advanced options box to write your own custom line pointing to the file, and disable the GUI option for TLS. For example

tls-auth /root/ta.key 0;

DirtDiver

Great tip! Worked like a charm. Thanks a lot.