Use tls-crypt instead of tls-auth

kylemanna#501
GHOSCHT · May 20, 2021 · ef7c164 · ef7c164
1 parent 89b9019
commit ef7c164
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 4 deletions.
diff --git a/bin/ovpn_genconfig b/bin/ovpn_genconfig
@@ -324,7 +324,7 @@ key $EASYRSA_PKI/private/${OVPN_CN}.key
 ca $EASYRSA_PKI/ca.crt
 cert $EASYRSA_PKI/issued/${OVPN_CN}.crt
 dh $EASYRSA_PKI/dh.pem
-tls-auth $EASYRSA_PKI/ta.key
+tls-crypt $EASYRSA_PKI/ta.key
 key-direction 0
 keepalive $OVPN_KEEPALIVE
 persist-key

diff --git a/bin/ovpn_getclient b/bin/ovpn_getclient
@@ -59,16 +59,16 @@ $(openssl x509 -in $EASYRSA_PKI/issued/${cn}.crt)
 $(cat $EASYRSA_PKI/ca.crt)
 </ca>
 key-direction 1
-<tls-auth>
+<tls-crypt>
 $(cat $EASYRSA_PKI/ta.key)
-</tls-auth>
+</tls-crypt>
 "
     elif [ "$mode" == "separated" ]; then
         echo "
 key ${cn}.key
 ca ca.crt
 cert ${cn}.crt
-tls-auth ta.key 1
+tls-crypt ta.key 1
 "
     fi