openvpncl static.key mode: Options error: specify only one of --tls-server, --tls-client, or --secret
|Reported by:||wenzhuo||Owned by:|
Background: I have been starting the openvpn client in rc_startup for a long time. But, starting from r23919, it looks that openvpn is less adaptive to the system clock change. If started in rc_startup (before the ntp clock sync), it just keeps sending packets times-tamped at seconds after the Unix epoch, and the openvpn server considers it a replay attack, and the connection cannot be established. So I am trying to start it using openvpncl instead.
Because of some "technical" and "non-technical" reasons, I have to use the static key mode as the preferable method.
However, the openvpn.conf file openvpncl generates has in it both "secret /tmp/openvpncl/static.key" and "tls-client", which is not allowed by openvpn. Here is error message:
Options error: specify only one of --tls-server, --tls-client, or --secret