Differences between revisions 2 and 5 (spanning 3 versions)

OpenVpn Notes and example

Linux VPN using ssl for encryption, with clients for Android and Windows.
Using more than one CA, stacked in same file https://community.openvpn.net/openvpn/wiki/Using_Certificate_Chains
2018 - Using PSK(pre-shared keys) only a point to point link can be established, for a server with multiple clients use CA and certs.

Errors

openvpn: VERIFY ERROR: depth=0, could not extract X509 subject string from certificate
- Caused by not adding a CN to the certificate when created.
openvpn[...]: TLS Error: Unroutable control packet received from [AF_INET] ... (si=3 op=P_CONTROL_V1)
- Add client to config in addition to tls-client to allow client to accept ip from server
- remove topology mode setting from client.'

...

-  ⇤ ← Revision 2 as of 2017-11-03 21:54:12 → 
  Size: 171
  Editor: PieterSmit
  Comment:
+   ← Revision 5 as of 2018-07-11 10:26:00 → ⇥
  Size: 877
  Editor: PieterSmit
  Comment:
-Deletions are marked like this.
+Additions are marked like this.
 Line 5:
+ * Using more than one CA, stacked in same file https://community.openvpn.net/openvpn/wiki/Using_Certificate_Chains
 * 2018 - Using PSK(pre-shared keys) only a point to point link can be established, for a server with multiple clients use CA and certs.

== Errors ==
 * {{{ openvpn: VERIFY ERROR: depth=0, could not extract X509 subject string from certificate }}}
   * Caused by not adding a CN to the certificate when created.

 * {{{ openvpn[...]: TLS Error: Unroutable control packet received from [AF_INET] ... (si=3 op=P_CONTROL_V1) }}}
   * Add '''client''' to config in addition to tls-client to allow client to accept ip from server
   * remove '''topology''' mode setting from client.'