Menu
What's new
By:
Filters Better Search

Openvpn error

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

D

David2001

Occasional Visitor
Tech 9 are you aware of the following error when using Merlin’s .ovpn import config file function? It used to work fine but now it simply gives off this error when attempting to connect to the server after importing said file.
 

Attachments

  • IMG_6990.jpeg
    IMG_6990.jpeg
    63.8 KB · Views: 41
That error message is most likely coming from the "OpenVPN Connect" app on your phone or tablet. If that's the case, the error usually means that the size of the RSA encryption key that you selected before generating the OpenVPN certs & keys is below the 2048 bits that is now the recommended minimum size.

Essentially, there are 2 possible solutions:

1) On the "OpenVPN Connect" app, go to "Settings -> Advanced Settings" and change the "Security Level" option from "Preferred (Recommended)" to "Legacy" which will allow the 1024-bit RSA encryption key used by your current OpenVPN certs & keys.

2) On the router WebGUI, go to "VPN -> VPN Server -> OpenVPN" to regenerate the certs & keys *after* changing the RSA key size from 1024 to 2048 bits.

To be able to see & select a new RSA key size, toggle OFF (i.e. DISABLE) the desired server instance (1 or 2), and then toggle it back ON (i.e. ENABLE), select the 2048-bit size (which should now be visible); now click on the "Apply" button at the bottom of the page. Once this is completed, you will need to click on "Renew" to regenerate the certs & keys, and then "Export" to get the new client configuration file which you will need to re-import on all your client devices that use the server.

P.S.
Take a look at the following post which started a discussion about the same error:

www.snbforums.com

Plans to migrate to OpenSSL 3.0?

The current firmware is using OpenSSL 1.1.1, which already ends support in September 2023. This means that it is no longer possible to get public security updates since last month. I still remember that it took about a year to migrate from OpenSSL 1.0.2 to 1.1.1 in 2019. I know there's so much...
www.snbforums.com www.snbforums.com

HTH
 
Last edited:
You must log in or register to reply here.

Similar threads

B
Unable to establish VPN connection to my PiVPN (ovpn) from my Asus RT-AC86U running Asuswrt-Merlin 386.14
Replies
1
Views
236
eibgrad
eibgrad
T
[Help] Problems setting up OpenVPN
Replies
7
Views
331
Thookie
T
G
OpenVPN Server log, is this in error ?
Replies
7
Views
424
eibgrad
eibgrad
Sergyk
VPN client
Replies
6
Views
707
eibgrad
eibgrad
C
VPN doing a lot of unrecognized options without them even being in the config IPV6 issue
Replies
3
Views
1K
RMerlin
RMerlin
Similar threads
Thread starter Title Forum Replies Date
G OpenVPN Server log, is this in error ? Asuswrt-Merlin 7
L Openvpn internal error add route Asuswrt-Merlin 0
D Openvpn client dns Asuswrt-Merlin 2
PR3MIUM WireGuard removing OpenVPN on ASUS Routers ? Asuswrt-Merlin 2
T [Help] Problems setting up OpenVPN Asuswrt-Merlin 7
N dedicated router for OpenVPN Asuswrt-Merlin 4
N Solved OpenVPN Server split tunnell config Asuswrt-Merlin 5
C Connection to router by ip fails while remote over OpenVPN Asuswrt-Merlin 17
S OpenVPN LAN access + one external IP Asuswrt-Merlin 3
J VPN director Multiple OpenVPN clients Asuswrt-Merlin 7

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 968 (members: 19, guests: 949)
Top