Add "key-direction 1" to client .ovpn

Adding this setting avoids connection errors on some clients, when the .ovpn file is imported directly in Gnome NetworkManager.

Server logs:
    Authenticate/Decrypt packet error: packet HMAC authentication failed
    TLS Error: incoming packet authentication failed from ...

Client logs:
    nm-openvpn: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
    nm-openvpn: TLS Error: TLS handshake failed

NetworkManager version: 1.2.0
openvpn version: OpenVPN 2.3.10
This commit is contained in:
Martin d'Allens 2016-06-13 12:09:54 +02:00 committed by GitHub
parent 50f387169a
commit dac38246bd

View File

@ -35,6 +35,7 @@ get_client_config() {
client client
nobind nobind
dev $OVPN_DEVICE dev $OVPN_DEVICE
key-direction 1
remote-cert-tls server remote-cert-tls server
remote $OVPN_CN $OVPN_PORT $OVPN_PROTO remote $OVPN_CN $OVPN_PORT $OVPN_PROTO