Incorrect tls-auth setting for Peer to Peer SSL/TLS OpenVPN with tls-auth
-
Hi,
PFsense 2.1 OpenVPN Client.
In order to connect to my vpn provider I need to manually change the tls-auth direction in /var/etc/openvpn/client.conf.
From: tls-auth /var/etc/openvpn/client2.tls-auth 1 To: tls-auth /var/etc/openvpn/client2.tls-auth
See this for reference: https://redmine.pfsense.org/issues/1198.
My question is, How can I have pfsense write the corect line in the client.conf file. I can change the line manually and it works until reboot, I want to make it persistent.
Thanks
-
I have the same problem with my provider. Did you find a solution to this?
-
You can copy that tls auth key to a file somewhere else (e.g. /root/ta.key) and then use the advanced options box to write your own custom line pointing to the file, and disable the GUI option for TLS. For example
tls-auth /root/ta.key 0;
-
Great tip! Worked like a charm. Thanks a lot.