Tunnel UDP-MSS-Fix: Enable; Leave other options as default . Step #5: Scroll down and in Additional Config box, enter following lines: persist-key persist-tun . Step #6: Scroll down to TLS Auth Key box. Download the certificate text file from here. Open it and copy the text between
Tunnel UDP MSS-Fix: Disabled(必要ない限りこの設定にします) nsCertType verification: チェックを入れます TLS Auth Key: ステップ1でダウンロードした.zipファイル内からta.keyをテキストエディタで開き、内容を貼り付けてください。 Tunnel UDP MSS-Fix: Enabled In the Additional Config box, paste the following: client remote-cert-tls server ping 15 ping-restart 60 resolv-retry infinite nobind explicit-exit-notify 3 comp-lzo yes verb 2 route-gateway dhcp redirect-gateway def1 Tunnel MTU Einstellung: 1500. Tunnel UDP Fragment: Leer lassen. Tunnel UDP MSS-Fix: Deaktivieren, außer Sie benötigen es. nsCertType verifikation: Geprüft. TLS Auth-Schlüssel: Fügen Sie den Inhalt von ta.key aus der .zip ein, die Sie in Schritt 1 heruntergeladen haben. Sie sollten sie über einen Texteditor öffnen.
Tunnel UDP Fragment: leave blank; Tunnel UDP MSS-Fix: Disable; nsCertType verification: Leave unchecked; TLS Auth Key: leave blank; Additional Config: Go to the folder where you've extracted the downloaded configuration, right-click the 'openvpn.ovpn' file and open it with a TEXT editor (any text editor will do but WordPad displays the config. more clearly). - Once open, select the passage
04/07/2019 Tunnel UDP MSS-Fix – Disable. CCD-Dir DEFAULT file – пусто . Client connect script – пусто. Static Key – пусто. PKCS12 Key – пусто. Public Server Cert – вставляем публичный сертификат сервер, начиная включительно со строки —–BEGIN CERTIFICATE—– и заканчивая включительно
Tunnel UDP MSS-Fix: Disabled Additional Config section: Paste the below data reneg-sec 0 persist-tun persist-key ping 5 ping-exit 30 nobind remote-random remote-cert-tls server route-metric 1
04/07/2019 Tunnel UDP MSS-Fix – Disable. CCD-Dir DEFAULT file – пусто . Client connect script – пусто. Static Key – пусто. PKCS12 Key – пусто. Public Server Cert – вставляем публичный сертификат сервер, начиная включительно со строки —–BEGIN CERTIFICATE—– и заканчивая включительно Tunnel Protocol: Select TCP from the drop-down menu; Encryption Cipher: Select AES 256 from the drop-down menu; Hash Algorithm: Select SHA1 from the drop-down menu; nsCertType verification: Enable; Advanced options: Enable; TLS Cipher: None; LZO Compression: Disabled; NAT: Enable; Firewall Protection: Enable; Tunnel UDP MSS-Fix: Disable; nsCertType Verification: Check . Then in the CA Cert Posted: Tue Dec 06, 2016 15:49 Post subject: OpenVPN Server Issues - Solutions to Problems Caused by Wiki Post subject: OpenVPN Server Issues - Solutions to Problems Caused by Wiki Tunnel MTU setting: 1500. Tunnel UDP Fragment: 空欄のままにします. Tunnel UDP MSS-Fix: Disabled (必要ない限りこの設定にします) nsCertType verification: チェックを入れます. TLS Auth Key: ステップ1でダウンロードした.zipファイル内からta.keyをテキストエディタで開き、内容を貼り付けてください。 Additional Config Tunnel UDP Fragment は空欄(デフォルト)、Tunnel UDP MSS-Fix は無効(デフォルト)のままでよい。 以上で、OpenVPN をオンにしてもオフにしてもいずれも、ping コマンドで 1472 バイトのパケットがギリギリ通ることを確認した。 The vpn tunnel only works well with small files (less than 20 kbytes) The same vpn client (key and config) from other locations works well. I tested the tunnel with tcp (instead of udp) connection, there was perfect.