http://192.168.180.206:8001/ 2026-05-14T07:47:08+00:00 http://192.168.180.206:8001/ http://192.168.180.206:8001/_media/wiki:dokuwiki.svg text/html 2025-08-12T08:26:47+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/linux:openvpn:dco?rev=1754987207&do=diff dco <https://airvpn.org/forums/topic/53820-openvpn-dco-data-channel-offload/> text/html 2020-09-03T08:03:51+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/linux:openvpn:docker?rev=1599120231&do=diff OpenVPN in Docker Good for creating central point to connect multiple clients. Bad for acting as VPN server to interconect local infrastructure with remote clients: - iptables firewalling issues from Docker (CT state match doesn't work properly) - network and routing issues text/html 2023-12-23T17:48:32+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/linux:openvpn:easyrsa?rev=1703353712&do=diff EasyRSA Easy-RSA v3 OpenVPN Howto Convert 2 to 3 Migrating easy-rsa, from v2 to v3 text/html 2025-08-12T07:43:49+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/linux:openvpn:issues?rev=1754984629&do=diff Issues IP packet with unknown IP version=15 seen It's a common error happening when there's a difference in compression configuration between the server and the client. comp-lzo disabled on server but enabled on client side. dco_parse_peer_multi: cannot store DCO stats for peer 4 text/html 2025-08-12T06:51:00+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/linux:openvpn:performance?rev=1754981460&do=diff Performance OpenVPN is single core daemon. It is recommended to run multiple instances to get multi-core benefits. Also OpenVPN is user-level application which requires lots of switches. <https://germanystudy.net/speed-up-your-openvpn-connection/> Tune packet size Test performance openvpn --genkey --secret /tmp/secret time openvpn --test-crypto --secret /tmp/secret --verb 0 --tun-mtu 20000 --cipher aes-256-cbc text/html 2020-09-03T08:04:41+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/linux:openvpn:proxy_arp?rev=1599120281&do=diff Proxy ARP Forward server real EXT IP to client Server ... script-security 2 client-connect /etc/openvpn/client-connect.sh client-disconnect /etc/openvpn/client-disconnect.sh ... #!/bin/sh case ${common_name} in "client_CN") /usr/sbin/ip nei add proxy ${ifconfig_pool_remote_ip} dev eth0.2 /usr/sbin/ip route add ${ifconfig_pool_remote_ip} dev ${dev} /usr/sbin/iptables -t nat -A postrouting_wan_rule -s ${ifconfig_pool_remote_ip} -j ACCEPT ;; esac ex… text/html 2025-08-12T06:41:50+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/linux:openvpn:pull?rev=1754980910&do=diff pull block pulled options pull-filter accept "route 192.168." pull-filter ignore "route 172." pull-filter accept "route 1" pull-filter ignore "route " pull-filter ignore redirect-gateway text/html 2021-04-14T07:52:39+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/linux:openvpn:scripts?rev=1618386759&do=diff scripts NOTE: When multiple connection with the same CN are allowed, there is possible to lost routing set in client-connect script, because routing can be remove upon client-disconnect script from another connection. As workaround, do not remove routing from