Related

Join the DigitalOcean Community Community

Join 1M+ other developers and:

  • Get help and share knowledge in Q&A
  • Subscribe to topics of interest
  • Get courses & tools that help you grow as a developer or small business owner
 Join Now
Can't ping from devices behind the VPN to devices connecting to VPN Question Question
Is it possible to assign a "static" IP to clients based on the username Question Question

Question

Probably better to save the client-config directory in the CA rather than server

Posted September 13, 2021 60 views
UbuntuSecurityVPNUbuntu 20.04
How To Set Up and Configure an OpenVPN Server on Ubuntu 20.04

Thanks for the amazing tutorial. I was thinking it would be better to save the client-config directory in the CA rather than the server for the following reasons

  • The CA files can be put on a removable drive for high security and used only when necessary
  • no need to copy client.req to CA in order to sign it
  • if server is compromised, then attacker can have access to the private key of client.
Add a comment
e271828r
By:
e271828r

Related

Join the DigitalOcean Community Community

Join 1M+ other developers and:

  • Get help and share knowledge in Q&A
  • Subscribe to topics of interest
  • Get courses & tools that help you grow as a developer or small business owner
 Join Now
Can't ping from devices behind the VPN to devices connecting to VPN Question Question
Is it possible to assign a "static" IP to clients based on the username Question Question
Submit an answer

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Related

Looking for something else?

Ask a new question Search for more help