Jump to content

OpenVPN: Difference between revisions

OpenVPN (view source)

Revision as of 13:49, 7 June 2024

511 bytes added ,  7 June
imported from old wiki
VisualWikitext
(imported from old wiki)
 
Line 63: Line 63:


If you want to run OpenVPN clients in NixOS declarative containers, you will need to set the {{nixos:option|enableTun}} container option.
If you want to run OpenVPN clients in NixOS declarative containers, you will need to set the {{nixos:option|enableTun}} container option.
=== Supporting legacy cipher providers ===
If you need to connect to servers with legacy ciphers (e.g. '''BF-CBC'''), one way is to override OpenVPN to use '''openssl_legacy''' package (which is [https://github.com/NixOS/nixpkgs/blob/nixos-unstable/pkgs/development/libraries/openssl/3.0/legacy.cnf configured to enable legacy providers]), for example via an overlay:
<syntaxHighlight lang="nix">
final: prev: {
  openvpn = prev.openvpn.override {
    openssl = prev.openssl_legacy;
  };
}
</syntaxHighlight>


== VPN Server ==
== VPN Server ==
Retrieved from "https://wiki.nixos.org/wiki/Special:MobileDiff/13092"