Menu
▾
▴
Re: [Openvpn-users] Compatibility from openvpn 2.4 to 2.7
|
From: Simon M. <sim...@in...> - 2025-10-17 09:20:08
|
> Hi, > > On Thu, Oct 16, 2025 at 01:56:01PM +0200, Simon Matter wrote: >> I've tried both options but unfortunately they don't make a difference. >> >> Is there anything else I can try? > > "Look carefully at your certificates" - the error we get back from OpenSSL > is "certificate verification failed", which could be anything really. > > Maybe "openssl verify" can shed some light on it. > > (As far as I can see, it's the client that complains, so you need to > verify the server cert vs. the CA cert that is in the client config) Looks like "update-crypto-policies --set LEGACY" did the trick to make it work. Ar least this makes the errors go away in a test setup. I'll soon do it on a production system. Simon |
