Used cipher issues

**Doman** · 2024-04-26, 05:34 AM

Server:
dev tun
proto udp
port 999
ca /etc/openvpn/easy-rsa/pki/bla.crt
cert /etc/openvpn/easy-rsa/pki/issued/bla.crt
key /etc/openvpn/easy-rsa/pki/private/bla.key
dh none
topology subnet
server 10.8.0.0 255.255.255.0
push "dhcp-option DNS 1.1.1.1"
push "block-outside-dns"
push "redirect-gateway def1"
client-to-client
keepalive 180 550
remote-cert-tls client
tls-version-min 1.3
tls-crypt /etc/openvpn/easy-rsa/pki/ta.key
#cipher AES-256-CBC
data-ciphers AES-256-CBC
data-ciphers-fallback BF-CBC:AES-256-CBC:AES-256-GCM
auth SHA256

<2/3> I had to split this post in 3 parts, because I'm getting "403 ERROR" in this forum if it's longer... ... ...

**Doman** · 2024-04-26, 05:38 AM

Adding data-ciphers & data-ciphers-fallback to client side seems pointless... as it generates an error - configuration ignored/not supported. And even if added it still fails.

So... the result is... client is stuck on:
Connecting to 999.999.999.999:99 via UDP
<timeout & repeat>

If I remove data-ciphers & data-ciphers-fallback lines everything is working... but with AES-256-GCM which I don't want...

Help, anyone?

BR, Doman.

PS: I'm constantly getting 403 ERROR message when trying to post here

<3/3> I had to split and remove content from this post, because I'm getting "403 ERROR" in this forum if it's longer... ... ...

Used cipher issues

Used cipher issues

Comment

Comment