From: Frank Lichtenheld Date: Wed, 11 Jan 2023 12:52:42 +0000 (+0100) Subject: documentation: update 'unsupported options' section X-Git-Tag: v2.7_alpha1~587 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=ee0a6026af9c47fe21217f57ab04b9cc2cc193f1;p=thirdparty%2Fopenvpn.git documentation: update 'unsupported options' section We listed those in Changes, but did not update the documentation. Signed-off-by: Frank Lichtenheld Acked-by: Gert Doering Message-Id: <20230111125242.21025-1-frank@lichtenheld.com> URL: https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg25968.html Signed-off-by: Gert Doering --- diff --git a/doc/man-sections/unsupported-options.rst b/doc/man-sections/unsupported-options.rst index 05ba3ca20..5c4e3a0e0 100644 --- a/doc/man-sections/unsupported-options.rst +++ b/doc/man-sections/unsupported-options.rst @@ -17,6 +17,14 @@ longer supported ``key-method`` weakens the VPN tunnel security. The old ``key-method`` was also only needed when the remote side was older than OpenVPN 2.0. +--management-client-pf + Removed in OpenVPN 2.6. The built-in packet filtering (pf) functionality + has been removed. + +--ncp-disable + Removed in OpenVPN 2.6. This option mainly served a role as debug option + when NCP was first introduced. It should no longer be necessary. + --no-iv Removed in OpenVPN 2.5. This option should not be used as it weakens the VPN tunnel security. This has been a NOOP option since OpenVPN 2.4. @@ -30,3 +38,6 @@ longer supported in recent SSL/TLS libraries. If your certificates does not include *key usage* and *extended key usage* fields, they must be upgraded and the ``--remote-cert-tls`` option should be used instead. + +--prng + Removed in OpenVPN 2.6. We now always use the PRNG of the SSL library.