| 1 | = Introduction = |
| 2 | |
| 3 | Since version '''2.4''', OpenVPN can be built using mbedtls as it's crypto backend, instead of OpenSSL. See [https://tls.mbed.org/] for more information on mbedtls. |
| 4 | |
| 5 | = Limitations compared to OpenSSL = |
| 6 | |
| 7 | Note that the mbedtls variant of OpenVPN does not support the same feature set as the OpenSSL variant. The most prominent differences are listed in the latest [https://github.com/OpenVPN/openvpn/blob/master/README.mbedtls README.mbedtls]. |
| 8 | |
| 9 | = Building the mbedtls-enabled OpenVPN = |
| 10 | |
| 11 | OpenVPN '''2.4''' has full mbedtls support. Get the sources from [http://openvpn.net/index.php/open-source/downloads.html the download page], or get the most recent (potentially unstable) code [https://github.com/OpenVPN/openvpn from github]. |
| 12 | |
| 13 | To build using mbedtls: |
| 14 | {{{ |
| 15 | ./configure --with-crypto-library=mbedtls |
| 16 | make |
| 17 | make install |
| 18 | }}} |