Hi
I try to connect a openvpn client interface with certification authentication from mikrotik to an openvpn server on centos.
I think I have problem with matching parameter between cleint and server specially about “auth”, “cipher” & tls config.
could you check this config and whats is mismatch between them
Mikrotik as OpenVPN Client
name="ovpn-out1"
mac-address=******* max-mtu=1500
connect-to=<SERVER IP>
port=<SERVER PORT> mode=ip
user=<common name of client cert> password=""
profile=openvpn-client
certificate=<cert Name> verify-server-certificate=no
auth=sha1
cipher=aes128
use-peer-dns=yes
add-default-route=no
Open VPN Server config on CentsOS
port ****
proto tcp
dev tun
user nobody
group nobody
persist-key
persist-tun
keepalive 10 120
topology subnet
server 10.9.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "dhcp-option DNS 1.0.0.1"
push "dhcp-option DNS 1.1.1.1"
push "redirect-gateway def1 bypass-dhcp"
dh none
ecdh-curve prime256v1
tls-crypt tls-crypt.key 0
crl-verify crl.pem
ca ca.crt
cert ********.crt
key *********.key
auth SHA1
cipher AES-128-CBC
ncp-ciphers AES-128-CBC
tls-server
tls-version-min 1.1
tls-cipher TLS-DHE-RSA-WITH-AES-128-CBC-SHA
status /var/log/openvpn/status.log
verb 3
Any help appreciated