Skip to main content
Super User

All Questions

Ask Question
Tagged with
7 questions
Newest Active Bountied Unanswered
3 votes
1 answer
5k views

How to use existing CA and Server key with EasyRsa?

i have an existing ca key and cert. how do i tell easyrsa to use that to generate server and client certs, instead of generating its own? All the docs seem to mention to do an init-pki to initialize a ...
pdeva's user avatar
pdeva
  • 1,891
0 votes
0 answers
451 views

OpenVPN Server 2.3.1, how to switch from dh1024.pem to dh4096.pem

I had to generate new keys to use the latest version of OpenVPN client to connect to my Netgear R7000 router, as the stock ones used MD5 which is no longer supported. I followed a guide to generate ...
mfloris's user avatar
mfloris
  • 261
0 votes
1 answer
1k views

How to connect to my Synology NAS using OpenVPN?

I have a Synology NAS at home. I have installed the VPN Server package and enabled Open VPN. I don't want to use the QuickConnect and I want to minimise the number of port for port forwarding. I ...
A j's user avatar
A j
  • 195
0 votes
0 answers
1k views

OpenVPN on CentOS failing TLS handshake

I'm trying to set up an OpenVPN on Centos, following the DigitalOcean guide https://www.digitalocean.com/community/tutorials/how-to-setup-and-configure-an-openvpn-server-on-centos-7 And I've done all ...
enrm's user avatar
enrm
  • 193
1 vote
0 answers
9k views

certificate verify failed - Open VPN

When establishing open vpn connection, i am facing error "TLS_ERROR: BIO read tls_read_plaintext error: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed" SSL ...
syed imty's user avatar
syed imty
  • 111
3 votes
1 answer
12k views

OpenVPN: Create Client File with embeded or inline certificates

I have read everything I can find on the Web, and I am having trouble creating a client file which works. I am using Tunnelblick on my iMac as a client and have successfully imported an .ovpn file ...
Manngo's user avatar
Manngo
  • 609
2 votes
1 answer
7k views

OpenVPN subject name verification (verify-x509-name) with Subject Alternative Name (SAN)

I run an OpenVPN gateway which is reachable unter two different host names (one from outside, one internally). For this reason I have created a certificate with a Subject Alternative Name field, which ...
user149408's user avatar
user149408
  • 1,100