malikshi
commented
3 years ago @kpdozer set ServerCipherSet DHE-RSA-AES256-SHA recommended to use ECDHE-RSA-AES256-GCM-SHA384
Closed kpdozer closed 3 years ago
malikshi
commented
3 years ago @kpdozer set ServerCipherSet DHE-RSA-AES256-SHA recommended to use ECDHE-RSA-AES256-GCM-SHA384
malikshi
commented
3 years ago @cenk1cenk2 sir can you test it?
cenk1cenk2
commented
3 years ago hello @kpdozer and @malikshi ,
thank you @malikshi for the suggestion on this problem. I really do not know how to replicate this problem. I have an ongoing setup for the last 6-7 years and am using it with multiple operating system clients but never really needed to fine-tune it. So, unfortunately, I am not an expert on the issue. But if some kind of library is missing from the container, we can always add that with a suggestion.
malikshi
commented
3 years ago can you edit this one in server_config.json changes default CipherName to string CipherName ECDHE-RSA-AES256-GCM-SHA384 @kpdozer edit and save with your own set then run docker-compose
malikshi
commented
3 years ago @kpdozer you may check this setting for windows client enable deprecated protocol tls then you're good to go.
kpdozer
commented
3 years ago @malikshi Thanks. Indeed ECDHE-RSA-AES256-GCM-SHA384 or any other ECDHE method works. It just became interesting why I could not choose the method recommended by siomiz. In addition, I did not make any settings on the Windows client side. I think that ECDHE-RSA-AES256-GCM-SHA384 will be enough for me, so the problem can be considered solved.
malikshi
commented
3 years ago I'm lacking knowledge of docker things, any reference to study docker? mostly apps/services that I'm doesn't use docker sad noises
malikshi
commented
3 years ago how to download ovpn.zip from the inside container? @cenk1cenk2 sorry to bother you
cenk1cenk2
commented
3 years ago You don't have to say that @malikshi. You can use docker-compose cp or docker cp command. The exact folder which it is in I have no idea at the moment, but you can try to docker exec into the container to find out.
About docker itself, you can take a look at Linux kernel namespaces to understand the basic underpinnings of containerization but other than that docker reference pages are pretty good.
malikshi
commented
3 years ago thank you so much @cenk1cenk2 I set up softether with your docker and make adjustments for my personal settings. currently still running softether + ics-dhcp server and have speed problem I don't know where the causes is.
cenk1cenk2
commented
3 years ago I thank you @malikshi for the suggestion.
@kpdozer , I am closing this issue as it is resolved.
I get error: A fatal error occurred while creating a TLS client credential. The internal error state is 10013 "siomiz/SoftEtherVPN" works with "DHE-RSA-AES256-SHA" without issue. What can be done?