-keysize is DEPRECATED and will be removed in OpenVPN 2.6

Post new topic   Reply to topic    DD-WRT Forum Index -> Broadcom SoC based Hardware
Author Message
manchesterblack
DD-WRT User


Joined: 04 Mar 2021
Posts: 65
Location: Manchester

PostPosted: Sun Jun 06, 2021 23:59    Post subject: -keysize is DEPRECATED and will be removed in OpenVPN 2.6 Reply with quote
I have DD-WRT v3.0-r46788 std (05/28/21) which works fine on Netgear R7000. When I connect to my VPN, I get this message on the router DDWRT status - -keysize is DEPRECATED and will be removed in OpenVPN 2.6
My cipher settings are set as per https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=326913&sid=c9d951c609736f6d8964457560af3143
This is my VPN configuration script:
persist-key
persist-tun
persist-remote-ip
keysize 256
remote-cert-tls server

Is it because the keysize is 256 on the script? What will happen if I remove this line from the script (keysize 256)?


_________________
Netgear R7000
DD-WRT DD-WRT v3.0-r50595 std (10/23/22)
Manchester
Enable dnsmasq- Yes
Encrypt DNS- NO
DNSCrypt Resolver- No Using Smart DNS
Cache DNSSEC Data- Yes
Validate DNS Replies (DNSSEC)- NO
Check Unsigned DNS Replies- NO
No DNS Rebind- Enable
Query DNS in Strict Order- Enable
Add Requestor MAC to DNS Query- Disable
RFC4039 Rapid Commit Support- Enable
Maximum Cached Entries- 1500

Smart DNS - YES

server-https https://9.9.9.9/dns-query
server-tls 9.9.9.9:853 -host-name: dns.quad9.net
server-tls 5.2.75.75:853 -host-name: dot.nl.ahadns.net
server-https https://1.1.1.1/dns-query

Additional VPN Configuration-
pull-filter ignore "dhcp-option DNS6 "
pull-filter ignore "dhcp-option DNS "

Dnsmasq Additional Options

server=/pool.ntp.org/9.9.9.9
server=/pool.ntp.org/1.0.0.1
server=/adquard-dns.com/9.9.9.9


BrainSlayer wrote:
we just do it since we do not like any restrictions enforced by stupid cocaine snorting managers
Sponsor
Wildlion
DD-WRT Guru


Joined: 24 May 2016
Posts: 1405

PostPosted: Mon Jun 07, 2021 0:43    Post subject: Reply with quote
You could have done a google search:
Openvpn Deprecated Options

it is the command line option due to the variable key size ciphers being removed...
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Index -> Broadcom SoC based Hardware All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum