FreshTomato Wiki

User Tools

Site Tools

Trace:
vpn-server

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
vpn-server [2024/11/20 15:18] – [OpenVPN Server] doc 2.5 -> 2.6 petervdmvpn-server [2025/11/19 20:32] (current) – [Problem: Traffic Flowing in only one Direction] hogwild
Line 13: Line 13:
  \\  \\
  
-However, there are still differences between versions. For example, clients and servers may be configured on different versions. Encryption algorithms may be negotiated differently among versions. FreshTomato 2024.3 includes OpenVPN 2.6.12. For details, see the OpenVPN documentation/support forums: [[https://build.openvpn.net/man/openvpn-2.6/openvpn.8.html]]+However, there are still differences between versions. For example, clients and servers may be configured on different versions. Encryption algorithms may be negotiated differently among versions. FreshTomato 2025.3 includes OpenVPN 2.6.14. For details, see the OpenVPN support forums: [[https://build.openvpn.net/man/openvpn-2.6/openvpn.8.html]]
  
  \\  \\
Line 351: Line 351:
   * AES-128-GCM   * AES-128-GCM
   * AES-256-GCM   * AES-256-GCM
-  * AES-128-CB+  * AES-128-CBC
   * AES-256-CBC   * AES-256-CBC
  
Line 448: Line 448:
 Here, you can specify a custom configuration for the OpenVPN server to use. Here, you can specify a custom configuration for the OpenVPN server to use.
  
-For details about valid custom parameters, please see: \\  [[https://build.openvpn.net/man/openvpn-2.5/openvpn.8.html]] \\ .+For details about valid custom parameters, please see: \\  [[https://build.openvpn.net/man/openvpn-2.6/openvpn.8.html]] \\ .
  
  
Line 534: Line 534:
 A code commit was entered for Elliptical elliptic curve cryptography on 2024-10-19, and should be included in the next release. If your release doesn't support elliptical curve cryptography, you **must **configure Diffie-Hellman parameters. A code commit was entered for Elliptical elliptic curve cryptography on 2024-10-19, and should be included in the next release. If your release doesn't support elliptical curve cryptography, you **must **configure Diffie-Hellman parameters.
  
-Elliptic curve cryptography is also implemented in releases of OpenVPN since v2.4.+Elliptic curve cryptography is also implemented in OpenVPN releases v2.4 and later.
  
  \\  \\
Line 696: Line 696:
  \\  \\
  
- \\+===== OpenVPN Server - Notes and Troubleshooting =====
  
- \\+==== Problem: Traffic Flowing in only one Direction ====
  
- \\+\\
  
 +Sometimes, it may occur that from one end of your setup (“A)”, you can ping devices and both VPN virtual interfaces at the other end (“B”), however, from end B, you cannot ping the remote router or devices or the client VPN virtual interface at end A.
  
 +It this occurs, please check that there are default routes setup from B to A. Also, please check that on the client side, (in this case, end B), the “Inbound firewall” option is disabled. On the server side, make sure to add the client's subnet, so it knows how to route traffic from the server back to the client.
 +\\
 + \\
 + \\ 
 + \\ 
vpn-server.1732115915.txt.gz · Last modified: by petervdm

Page Tools

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki