Hi, On Tue, Jan 24, 2017 at 04:45:52PM +0400, Dmitry Melekhov wrote: > 24.01.2017 16:31, Gert Doering ??????????: > > > > Well. If you *know* which of the old clients have been upgraded to AES, > > you should be able to put "cipher AES..." into a ccd/ file for that client > > (I haven't tested it with 2.4.0-final - it worked for a hacked-together > > variant I did that later become the much more cleaned-up official version of > > poor man's NCP by Steffan). Technically it should work... > > Unfortunately it doesn't work with 2.4.0: > > if i write > cipher AES-256-CBC > in my ccd then > > > Jan 24 16:41:40 inetgw2 openvpn[25861]: dm/192.168.22.229:34918 OPTIONS > IMPORT: reading client specific options from: ccd/dm > Jan 24 16:41:40 inetgw2 openvpn[25861]: dm/192.168.22.229:34918 Options > error: option 'cipher' cannot be used in this context (ccd/dm)
That is syntactically correct, but it seems our code lost the ability
to do that (since it was no longer necessary with "do it automatically
based on OCC data"). Seems we want to look into it again :-)
Steffan, are you listening? ;-)
Thanks for testing.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany [email protected]
fax: +49-89-35655025 [email protected]
signature.asc
Description: PGP signature
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, SlashDot.org! http://sdm.link/slashdot
_______________________________________________ Openvpn-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openvpn-users
