[NAS-106455] OpenVPN Service configuration issues - iX - Bug Tracker (Jira)

XML

Word

Printable

Details

Type: Bug
Status: Done (View Workflow)
Priority: Low
Resolution: Complete
Affects Version/s: Master - FreeNAS Nightlies
Fix Version/s: SCALE-20.10-ALPHA, 12.0-BETA2
Component/s: Certificates, Networking, Services
Labels:
None

Impact:
Low

Description

TrueNAS-12.0-MASTER-202006100424

1. When a CA Certificate is created with the Openvpn profile, it only sets the Server Auth purpose, which means that it cannot Authenticate Client Certificates.

2. When generating a Client configuration, he exported configuration has the "remote" option set to the value of "server" option of the Openvpn server configuration, which is not correct. It needs to be set to be the address that the OpenVPN server.

3. All the Server Additional Parameters seem to get fully copied into the Client config, which may not always be appropriate. In the particular case of push options, I would suggest leaving them out of the Client config entirely, so that the Server can remain capable of dynamically adjusting these settings for the clients as time goes by. Other Server settings added here may also be confusing for a Client.

Attachments

JEditor

Issue Links

is cloned by

NAS-106612 CLONE - OpenVPN Service configuration issues

Done

Activity

People

Assignee:: Waqar Ahmed

Reporter:: R Every

Watchers:: Bug Clerk, Ernest M Lorimer, R Every, Waqar Ahmed, William Grzybowski

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 11/Jun/20 5:55 PM

Updated:: 25/Aug/20 3:35 PM

Resolved:: 02/Jul/20 10:27 AM