diff options
Diffstat (limited to 'security/openvpn/pkg-message')
| -rw-r--r-- | security/openvpn/pkg-message | 15 |
1 files changed, 12 insertions, 3 deletions
diff --git a/security/openvpn/pkg-message b/security/openvpn/pkg-message index ad69e3b90101..8b4e025ff42c 100644 --- a/security/openvpn/pkg-message +++ b/security/openvpn/pkg-message @@ -3,13 +3,22 @@ ### See ${PREFIX}/etc/rc.d/openvpn.sh.sample for how to do this ### ### automatically at system boot-up time. ### ### ---------------------------------------------------------------------- ### -### To retain backwards compatibility of OpenVPN 1.3.0 with OpenVPN peers ### -### that run older versions (back to 1.1.0), you will have to set the MTU ### -### explicitly by command line options since OpenVPN 1.3.0. ### +### To get OpenVPN 2.0 to talk with the 1.5/1.6 versions, you may need to ### +### edit the 1.X configuration file by adding these lines: ### ### ### +### tun-mtu 1500 ### +### tun-mtu-extra 32 ### +### mssfix 1450 ### +### ### +### key-method 2 <- this key-method line only for TLS setups ### +### ---------------------------------------------------------------------- ### ### When connecting to 1.4.X or older peers with a TAP-style tunnel, set ### ### --tun-mtu 1500 --tun-mtu-extra 32 on the peer. ### ### ### +### To retain backwards compatibility of OpenVPN 1.3.0 with OpenVPN peers ### +### that run older versions (back to 1.1.0), you will have to set the MTU ### +### explicitly by command line options since OpenVPN 1.3.0. ### +### ### ### When using TLS security and your peer runs OpenVPN 1.3.X, the PEER ### ### must use --disable-occ. This version of OpenVPN cannot use TLS mode ### ### to peers running OpenVPN 1.2.x or older. ### |