Bernhard.Linz/openvpn-install
1
0
Fork 0
mirror of https://github.com/angristan/openvpn-install.git synced 2025-07-13 01:44:23 +02:00
Code Issues Projects Releases Wiki Activity

Disable DH and enable ECDH

Browse Source 
cf. https://community.openvpn.net/openvpn/wiki/Openvpn24ManPage#lbAK
This commit is contained in:
Angristan 2017-02-16 18:30:40 +01:00 committed by GitHub
parent fa6cf4e569
commit 56fad22cad
1 changed files with 1 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
openvpn-install.sh
View File

@ -403,7 +403,6 @@ WantedBy=multi-user.target" > /etc/systemd/system/rc-local.service
# Create the PKI, set up the CA, the DH params and the server + client certificates # Create the PKI, set up the CA, the DH params and the server + client certificates
./easyrsa init-pki ./easyrsa init-pki
./easyrsa --batch build-ca nopass ./easyrsa --batch build-ca nopass
openssl dhparam $DH_KEY_SIZE -out dh.pem
./easyrsa build-server-full server nopass ./easyrsa build-server-full server nopass
./easyrsa build-client-full $CLIENT nopass ./easyrsa build-client-full $CLIENT nopass
./easyrsa gen-crl ./easyrsa gen-crl
@ -461,7 +460,7 @@ ca ca.crt
cert server.crt cert server.crt
key server.key key server.key
tls-auth tls-auth.key 0 tls-auth tls-auth.key 0
dh dh.pem dh none
auth SHA256 auth SHA256
$CIPHER $CIPHER
tls-server tls-server