Changes between Version 16 and Version 17 of Openvpn23ManPage


Ignore:
Timestamp:
12/16/15 13:46:08 (5 years ago)
Author:
Samuli Seppänen
Comment:

Update man-page to 2.3.9

Legend:

Unmodified
Added
Removed
Modified
  • Openvpn23ManPage

    v16 v17  
    774774IP address changes due to DHCP, we should configure
    775775our IP address change script (see man page for
    776 <B><A HREF="/cgi-bin/man/man2html?8+dhcpcd">dhcpcd</A></B>(8)
     776<B><A HREF="/man/man2html?8+dhcpcd">dhcpcd</A></B>(8)
    777777
    778778) to deliver a
     
    955955of the TAP-Win32 driver.  When used on *nix, requires that the tun
    956956driver supports an
    957 <B><A HREF="/cgi-bin/man/man2html?8+ifconfig">ifconfig</A></B>(8)
     957<B><A HREF="/man/man2html?8+ifconfig">ifconfig</A></B>(8)
    958958
    959959command which sets a subnet instead of a remote endpoint IP address.
     
    11031103<P>
    11041104This option, while primarily a proxy for the
    1105 <B><A HREF="/cgi-bin/man/man2html?8+ifconfig">ifconfig</A></B>(8)
     1105<B><A HREF="/man/man2html?8+ifconfig">ifconfig</A></B>(8)
    11061106
    11071107command, is designed to simplify TUN/TAP
     
    11721172This option is intended as
    11731173a convenience proxy for the
    1174 <B><A HREF="/cgi-bin/man/man2html?8+route">route</A></B>(8)
     1174<B><A HREF="/man/man2html?8+route">route</A></B>(8)
    11751175
    11761176shell command,
     
    13731373<B>--pull,</B>
    13741374
    1375 accept options pushed by server EXCEPT for routes and dhcp options
    1376 like DNS servers.
     1375accept options pushed by server EXCEPT for routes, block-outside-dns and dhcp
     1376options like DNS servers.
    13771377<P>
    13781378When used on the client, this option effectively bars the
     
    17431743<DD>
    17441744Set the TCP/UDP socket send buffer size.
    1745 Currently defaults to 65536 bytes.
     1745Defaults to operation system default.
    17461746
    17471747<DT><B>--rcvbuf size</B>
     
    17491749<DD>
    17501750Set the TCP/UDP socket receive buffer size.
    1751 Currently defaults to 65536 bytes.
     1751Defaults to operation system default.
    17521752
    17531753<DT><B>--mark value</B>
     
    27062706<P>
    27072707In OpenVPN, the vast majority of errors which occur after initialization are non-fatal.
    2708 
    27092708<P>
    27102709Note: as soon as OpenVPN has daemonized, it can not ask for usernames,
     
    27562755<DD>
    27572756Use this option when OpenVPN is being run from the inetd or
    2758 <B><A HREF="/cgi-bin/man/man2html?8+xinetd">xinetd</A>(8)</B>
     2757<B><A HREF="/man/man2html?8+xinetd">xinetd</A>(8)</B>
    27592758
    27602759server.
     
    45014500<B>up</B>
    45024501
    4503 is a file containing username/password on 2 lines (Note: OpenVPN
    4504 will only read passwords from a file if it has been built
    4505 with the --enable-password-save configure option, or on Windows
    4506 by defining ENABLE_PASSWORD_SAVE in win/settings.in).
     4502is a file containing username/password on 2 lines. If the
     4503password line is missing, OpenVPN will prompt for one.
    45074504<P>
    45084505If
     
    57045701be derived by taking a secure hash of this file, similar to
    57055702the
    5706 <B><A HREF="/cgi-bin/man/man2html?1+md5sum">md5sum</A></B>(1)
     5703<B><A HREF="/man/man2html?1+md5sum">md5sum</A></B>(1)
    57075704
    57085705or
    5709 <B><A HREF="/cgi-bin/man/man2html?1+sha1sum">sha1sum</A></B>(1)
     5706<B><A HREF="/man/man2html?1+sha1sum">sha1sum</A></B>(1)
    57105707
    57115708commands. This option is deprecated and will stop working in OpenVPN 2.4 and
     
    58175814Keep in mind that storing your password in a file
    58185815to a certain extent invalidates the extra security provided by
    5819 using an encrypted key (Note: OpenVPN
    5820 will only read passwords from a file if it has been built
    5821 with the --enable-password-save configure option, or on Windows
    5822 by defining ENABLE_PASSWORD_SAVE in win/settings.in).
     5816using an encrypted key.
    58235817
    58245818<DT><B>--auth-nocache</B>
     
    62946288option.  This file must be shared with the
    62956289peer over a pre-existing secure channel such as
    6296 <B><A HREF="/cgi-bin/man/man2html?1+scp">scp</A></B>(1)
     6290<B><A HREF="/man/man2html?1+scp">scp</A></B>(1)
    62976291
    62986292
     
    63316325
    63326326scripts to run the appropriate
    6333 <B><A HREF="/cgi-bin/man/man2html?8+ifconfig">ifconfig</A></B>(8)
     6327<B><A HREF="/man/man2html?8+ifconfig">ifconfig</A></B>(8)
    63346328
    63356329and
    6336 <B><A HREF="/cgi-bin/man/man2html?8+route">route</A></B>(8)
     6330<B><A HREF="/man/man2html?8+route">route</A></B>(8)
    63376331
    63386332commands.  These commands can be placed in the the same shell script
     
    66676661has been brought up and any routes have been added.
    66686662
     6663<DT><B>--block-outside-dns</B>
     6664
     6665<DD>
     6666Block DNS servers on other network adapters to prevent
     6667DNS leaks. This option prevents any application from accessing
     6668TCP or UDP port 53 except one inside the tunnel. It uses
     6669Windows Filtering Platform (WFP) and works on Windows Vista or
     6670later.
     6671
    66696672<DT><B>--dhcp-renew</B>
    66706673
     
    67516754
    67526755option.  On non-Windows systems, the
    6753 <B><A HREF="/cgi-bin/man/man2html?8+ifconfig">ifconfig</A></B>(8)
     6756<B><A HREF="/man/man2html?8+ifconfig">ifconfig</A></B>(8)
    67546757
    67556758command provides similar functionality.
     
    71327135The actual name of the TUN/TAP device, including
    71337136a unit number if it exists.
     7137Set prior to
     7138<B>--up</B>
     7139
     7140or
     7141<B>--down</B>
     7142
     7143script execution.
     7144
     7145<DT><B>dev_idx</B>
     7146
     7147<DD>
     7148On Windows, the device index of the TUN/TAP adapter (to
     7149be used in netsh.exe calls which sometimes just do not work
     7150right with interface names).
    71347151Set prior to
    71357152<B>--up</B>
     
    80758092
    80768093option will produce verbose output, similar to the
    8077 <B><A HREF="/cgi-bin/man/man2html?8+tcpdump">tcpdump</A></B>(8)
     8094<B><A HREF="/man/man2html?8+tcpdump">tcpdump</A></B>(8)
    80788095
    80798096program.  Omit the
     
    81028119to june over a secure medium such as by
    81038120using the
    8104 <B><A HREF="/cgi-bin/man/man2html?1+scp">scp</A></B>(1)
     8121<B><A HREF="/man/man2html?1+scp">scp</A></B>(1)
    81058122
    81068123program.
     
    84128429<H2>SEE ALSO</H2>
    84138430
    8414 <B><A HREF="/cgi-bin/man/man2html?8+dhcpcd">dhcpcd</A></B>(8),
    8415 
    8416 <B><A HREF="/cgi-bin/man/man2html?8+ifconfig">ifconfig</A></B>(8),
    8417 
    8418 <B><A HREF="/cgi-bin/man/man2html?1+openssl">openssl</A></B>(1),
    8419 
    8420 <B><A HREF="/cgi-bin/man/man2html?8+route">route</A></B>(8),
    8421 
    8422 <B><A HREF="/cgi-bin/man/man2html?1+scp">scp</A></B>(1)
    8423 
    8424 <B><A HREF="/cgi-bin/man/man2html?1+ssh">ssh</A></B>(1)
     8431<B><A HREF="/man/man2html?8+dhcpcd">dhcpcd</A></B>(8),
     8432
     8433<B><A HREF="/man/man2html?8+ifconfig">ifconfig</A></B>(8),
     8434
     8435<B><A HREF="/man/man2html?1+openssl">openssl</A></B>(1),
     8436
     8437<B><A HREF="/man/man2html?8+route">route</A></B>(8),
     8438
     8439<B><A HREF="/man/man2html?1+scp">scp</A></B>(1)
     8440
     8441<B><A HREF="/man/man2html?1+ssh">ssh</A></B>(1)
    84258442
    84268443
     
    85118528<HR>
    85128529This document was created by
    8513 <A HREF="/cgi-bin/man/man2html">man2html</A>,
     8530<A HREF="/man/man2html">man2html</A>,
    85148531using the manual pages.<BR>
    8515 Time: 06:53:40 GMT, June 08, 2015
     8532Time: 13:43:58 GMT, December 16, 2015
    85168533}}}