Versions Compared

Old Version 1

changes.mady.by.user Christina Loher

Saved on

compared with

New Version Current

changes.mady.by.user Emese Pogany

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

This article shows how to configure the options for the OpenVPN client in IGEL OS in order to ensure interaction with the server.

Info

Further information regarding the options can be found in

the 

the OpenVPN documentation

 which

 which is maintained by the OpenVPN project.

...

Menu path: Network > VPN > OpenVPN > [OpenVPN Connection] > Options

Image RemovedImage Added

Gateway port

Local gateway port. (Default: 1194 1194)

Custom renegotiation interval

Renegotiate data channel key after given number of seconds. (Default: 0 0)

Use LZO data compression Include PageIGELOS12BSDOCP:_SvIncludePlusContent-_Icon activatedIGELOS12BSDOCP:_SvIncludePlusContent-_Icon activated

 The ☑ The client will use LZO compression. Necessary if the server uses compression.

Include PageIGELOS12BSDOCP:_SvIncludePlusContent-_Icon deactivatedIGELOS12BSDOCP:_SvIncludePlusContent-_Icon deactivated The ☐ The client will not use LZO compression. (Default)

Info

If establishing a tunnel fails, try again with with Use LZO data compression compression enabled.

Note

The --comp-lzo option is considered deprecated from OpenVPN v2.4 and should not be used any more.

For more information, see https://community.openvpn.net/openvpn/wiki/DeprecatedOptions#Option:--comp-lzoStatus:Pendingremoval.

...

Protocol used for communication to the host

  • UDP: UDP will be used. (Default)

  • TCP-client: TCP will be used.

Info

If you use a proxy, select TCP-client.

Virtual network type

  • TUN: Routing will be used. (Default)

  • TAP: Bridging will be used.

Use custom tunnel Maximum Transmission Unit (MTU)

...

Restrict tunnel TCP Maximum Segment Size (MSS)

Include PageIGELOS12BSDOCP:_SvIncludePlusContent-_Icon activatedIGELOS12BSDOCP:_SvIncludePlusContent-_Icon activatedThe TCP segment size (MSS) of the tunnel will be restricted. Include PageIGELOS12BSDOCP:_SvIncludePlusContent-_Icon deactivatedIGELOS12BSDOCP:_SvIncludePlusContent-_Icon deactivated

The TCP segment size (MSS) will not be restricted. (Default)

Randomize remote hosts Include PageIGELOS12BSDOCP:_SvIncludePlusContent-_Icon activatedIGELOS12BSDOCP:_SvIncludePlusContent-_Icon activated

The remote gateways will be ordered randomly as a simple type of load balancing.

Include PageIGELOS12BSDOCP:_SvIncludePlusContent-_Icon deactivatedIGELOS12BSDOCP:_SvIncludePlusContent-_Icon deactivatedThe remote computers will not be ordered randomly. (Default)

...

Encryption algorithm for data packets. (Default: BF BF-CBC CBC - Blowfish in the Cipher Block Chaining Mode)

...

Hashing algorithm for packet authentication (Default: SHA1 SHA1)