TinCanTech

@davwheat If you have a physical local network with 16.77 million connected hosts then you do not require `pivpn` to configure your VPN. That is, unless you can demonstrate a...

> > There is **no valid use case** for `10/8` as a local subnet. Your Pi would _fry_, under such pressure.

OpenVPN intend to remove compression, eventually. https://community.openvpn.net/openvpn/wiki/Compression

A better way to renew your server certificate it to use [Easy-RSA](https://github.com/OpenVPN/easy-rsa) `v3.1.1`: Command `renew {server_name}` Then, install the renewed certificate into your server config file and remove the expired...

Check your client config: ``` tls_process_client_certificate:peer did not return a certificate ```

> Restart services: > > ``` > root@vpnilim:/etc/openvpn# systemctl restart [email protected] > root@vpnilim:/etc/openvpn# systemctl restart openvpn.service > ``` @frenzymind You may have started the wrong service, you should only use...

@flichtenheld With 2.6_beta1, still `Unknown`: ``` Unknown adapter OpenVPN Wintun: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix ....

Having to _manually_ build an entire, syntactically correct, `subject` field, to overwrite the requested `subject`, seems to be a very prone to error. Instead, the intent **could be** to overwrite...

@mat813 There is one problem with this PR. When `easyrsa sign-req` shows the DN of the request to be signed, it shows the subject from the request, not the subject...

Potentially superseded by #995