Menu
What's new
By:
Filters Better Search

tls-crypt-v2 for openvpn server?

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

J

Jaime Alvarez

Regular Contributor
I don't see the option to add a tls-crypt-v2 key to the openvpn server. Is this just a GUI limitation or the OpenVPN version in AsusWRT Merlin does not allow it?

I'm not even sure if this is recommended or not, just playing around with hardening my setup.
 
Jaime Alvarez said:
I don't see the option to add a tls-crypt-v2 key to the openvpn server. Is this just a GUI limitation or the OpenVPN version in AsusWRT Merlin does not allow it?

I'm not even sure if this is recommended or not, just playing around with hardening my setup.
Click to expand...
It's been a while since I implemented it, but I think the key needs to go in the Static Key field.

EDIT: Based on the Changelog, I think I only implemented tls-crypt-v2 support for clients, not for servers.
 
Thank you. This explains it then.

I did try putting it in the Static Key field and I got the following error (in the system log) : "Insufficient key material or header text not found in file 'static.key' (0/128/256 bytes found/min/max)"
 
Jaime Alvarez said:
Thank you. This explains it then.

I did try putting it in the Static Key field and I got the following error (in the system log) : "Insufficient key material or header text not found in file 'static.key' (0/128/256 bytes found/min/max)"
Click to expand...
If you absolutely want to use tls-crypt-v2, you might be able to do so by manually configuring things in the Custom field, and storing the key in a file stored in /jffs/openvpn/ .

I think at the time I decided not to implement it because it was involving a lot of work due to the need to generate both the public and private keys.
 
You must log in or register to reply here.

Similar threads

B
OpenVPN TLS Error: tls-crypt unwrapping failed
Replies
1
Views
2K
brzvlg
B
C
Can someone help in why this OpenVPN config doesn't work with merlin?
Replies
7
Views
1K
ComputerSteve
C
D
ASUS RT-AX86U OpenVPN Server Error - Key Too Small
Replies
4
Views
170
Tech9
Tech9
N
Solved Unable to connect to VPN server with self-signed certificate
Replies
0
Views
392
nino_070
N
R
Solved RT-AX86U Pro log repeats "WAN_Connection: WAN was restored" while red light keeps on and no Internet connection?
2
Replies
24
Views
1K
Rici
R
Similar threads
Thread starter Title Forum Replies Date
B OpenVPN TLS Error: tls-crypt unwrapping failed Asuswrt-Merlin 1
V DNS server vs DNS-over TLS server list Asuswrt-Merlin 3
A DNS/TLS IPv6. Asuswrt-Merlin 4
JCompagner Offloading ssl/tls for https (the router handling the https, routing http through) Asuswrt-Merlin 7
A Asus FTP Server - Android are unable to connect when TLS support is enabled. Asuswrt-Merlin 2
M OpenVPN / site to site with special security/routing constraints Asuswrt-Merlin 7
R OpenVPN keeps on turning itself off Asuswrt-Merlin 37
M Best router for wireguard or openVPN Asuswrt-Merlin 1
W OpenVPN Server set to LAN only allows browsing Asuswrt-Merlin 14
A Upgraded my ASUS, issues with NordVPN via OpenVPN Asuswrt-Merlin 4

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 670 (members: 19, guests: 651)
Top