Menu
What's new
By:
Filters Better Search

Anyone using TLS-Crypt in new 380.65 beta?

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

bayern1975 said:
how do you get 4096 bit RSA? i have just 1024?
Click to expand...
I am likely too late for you, but being a fellow newb I feel the pain and hope this post may save future newb suffering.

Assuming you built your keys with easyrsa according to the usual howto docs... you can (and should) edit the var file after you enter 'init-config'... before calling 'var' at the prompt. Besides making life easier by entering default cert parameters (ie Name, email, etc), you can also edit the "keysize = 1024" line to use what you want. I used 4096. The rest of the process will create keys and certs with 4096bit parameters. Beware if you thought build-dh took a while at 1024... at 4096 it will take like 50x longer.

If you will always use 4096 for any future pki's made in easyrsa, you might as well edit it into your var.example so the next 'init-config' will automatically have it in there.

On a related note, if you use tls-auth or tls-crypt, the openvpn --genkey... will still be 2048bit. Not sure if that will make it to 4096 soon, but I believe 2048 crypt is pretty friggin stout.

Kev
 
You must log in or register to reply here.

Similar threads

G
OpenVPN Server log, is this in error ?
Replies
7
Views
426
eibgrad
eibgrad
T
[Help] Problems setting up OpenVPN
Replies
7
Views
337
Thookie
T
B
OpenVPN TLS Error: tls-crypt unwrapping failed
Replies
1
Views
3K
brzvlg
B
C
Can someone help in why this OpenVPN config doesn't work with merlin?
Replies
7
Views
1K
ComputerSteve
C
N
Solved Unable to connect to VPN server with self-signed certificate
Replies
0
Views
811
nino_070
N
Similar threads
Thread starter Title Forum Replies Date
RMerlin Looking for feedback: Anyone considering AiCloud important to them? Asuswrt-Merlin 183
M WireGuard starts failing, anyone else with 3004.388.8_2? Asuswrt-Merlin 19
D Has Anyone managed to compile r8152.ko driver for the RT-AX86U Pro, help really appreciated Asuswrt-Merlin 9
M DNS pointing to a Kazakstan server: anyone seen this? Asuswrt-Merlin 32
W Long shot: Anyone with WiFi issues on 386.10, 386.11 and 386.12.1/2/3/4 running Home Assistant? Asuswrt-Merlin 17
S Anyone else having issues trying to flash the newest merlin (stable or beta) to the GT-0AXE11000? Asuswrt-Merlin 4
P Accessing remotly Server While Using VPN on Asus Router with Merlin Firmware Asuswrt-Merlin 9
Zakalwe Solved RT-AX86U Pro - Using as PPPoE modem with BT Full Fibter internet Asuswrt-Merlin 8
G Using VPN Director to route only torrent traffic through VPN Asuswrt-Merlin 9
F Unbricking RT-AC5300 using Serial Asuswrt-Merlin 3

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 747 (members: 28, guests: 719)
Top