When I set 4096 bit key in vars and run the easy-rsa buld-ca script, it states that it is building a 2048 bit key instead. It also takes a much smaller time to finish that when the key size was set to 2048 bits.
If the key has already been generated it will only #generate the configuration file for OpenVPN #VARIABLES #If you don't set a remote (the external IP of the server or the hostname) #the script will try to gather it using dig #You need to change the port to the one set in your server #if you want to add new directive to client configuration use How to set up an OpenVPN server and connect it to Cortado Dec 10, 2018 OpenVPN Key Size 1024 vs 2048 and Eavesdrop vs Access OpenVPN recommends using a 2048 RSA key size for greater security, however, the hardware I'm using is somewhat weak and defaults to using a 1024 RSA key size. I'm trying to determine if it's worth the hassle of manually changing things to a 2048 sized key. VPN Encryption Terms and Their Meanings (AES vs RSA vs SHA
Which protocol should I choose? | NordVPN Customer Support
A larger key size is more secure but will result in longer connection + wait times over the VPN. At the time of writing in late 2017, its generally believed that a 2048-bit key is sufficient for most usage scenarios. A 4096-bit key is believed to provide additional privacy vs. more powerful state-sponsored actors. PPTP vs. L2TP vs. OpenVPN: which one to use
How to create a Mikrotik OpenVPN server – Micu Blog
I've set the key size to 4096 in the vars file $ grep KEY_SIZE vars set_var EASYRSA_KEY_SIZE 4096 but when initializing the CA, it still uses the default 2048bit for the key: $ easyrsa build-ca Generating a 2048 bit RSA private key [.. Which protocol should I choose? | NordVPN Customer Support OpenVPN is a mature and robust piece of open-source software that enables us to provide a reliable and secure VPN service. It is a versatile protocol and can be used on both TCP and UDP ports. It supports a great number of strong encryption algorithms and ciphers – to ensure the protection of your data we use AES-256-GCM with a 4096-bit DH key. OpenVPN Server and Client Installation and Configuration Jan 07, 2015