From Ciphers to Certificates: Your Comprehensive Guide to Configuring OpenVPN on pfSense [YouTube Release]

Additional Resources:

Which is Better: Overlay Networks or Traditional VPN?

Computerphile Video on the Chacha Cipher

Netgate OpenVPN Documentation


QAT Gen3 Chacha hardware acceleration

Connecting With Us

Lawrence Systems Shirts and Swag



Amazon Affiliate Store
:shopping_cart: Lawrence Systems's Amazon Page

Ubiquiti Affiliate
:shopping_cart: Ubiquiti Store USA – Ubiquiti Inc.

All Of Our Affiliates that help us out and can get you discounts!
:shopping_cart: Affiliates We Love - Lawrence Technology Services

Gear we use on Kit
:shopping_cart: Kit

Try ITProTV free of charge and get 30% off!
:shopping_cart: Learn technology and pass IT certifications with ITProTV

Use OfferCode LTSERVICES to get 10% off your order at
:shopping_cart: Tech Supply Direct - Refurbished Tech at Unbeatable Prices

Digital Ocean Offer Code
:shopping_cart: DigitalOcean | The Cloud for Builders

HostiFi UniFi Cloud Hosting Service
:shopping_cart: HostiFi - UniFi Cloud Hosting

Protect you privacy with a VPN from Private Internet Access
:shopping_cart: Buy VPN with Credit Card or PayPal | Private Internet Access


:stopwatch: Time Stamps :stopwatch:
00:00 :arrow_forward: OpenVPN on pfsense 2023
02:09 :arrow_forward: OpenVPN Client Export Utility
02:28 :arrow_forward: OpenVPN Wizzard
03:25 :arrow_forward: Cipher Choices Cha Cah Poly VS AES
05:42 :arrow_forward: Hardware Crypto Acceleration
05:52 :arrow_forward: Tunnel Network
06:24 :arrow_forward: Split VS Full Tunnel VPN
07:04 :arrow_forward: Pushing Local Networks
08:32 :arrow_forward: Pushing Client DNS settings
09:17 :arrow_forward: OpenVPN Server User Auth Modes
10:48 :arrow_forward: Certificate Revocation
12:07 :arrow_forward: Managing User Certificates
13:38 :arrow_forward: Linux OpenVPN Client
14:10 :arrow_forward: Windows OpenVPN Client
15:05 :arrow_forward: Troubleshooting OpenVPN

#pfsense #openVPN #firewall

Just in case anyone installs a clean build of pfsense 2.6 CE and gets openVPN RAS running you may encounter a client connection error due to the client revocation list expiry date. The following patch needs to be applied:

Obviously found this out the hard way !