Menu path: Setup > Network > VPN > OpenVPN > [OpenVPN Connection] > TLS Options

Subject match: The computer will only accept connections from a computer whose X.509 name or name matches the one entered. If you leave this field empty, no check will take place.

Remote peer certificate TLS type

  • Do not verify
  • Check for server certificate
  • Check for client certificate

Key file for additional TLS authentication: As the path, enter relative to /wfs/OpenVPN or select using the file selection. This adds an additional HMAC legitimization level above the TLS control channel in order to prevent DDOS attacks.

Key direction

  • None: No key direction
  • 0: If the default option is not used, one side of the connection should use Direction 0 and the other Direction 1.
  • 1: If the default option is not used, one side of the connection should use Direction 0 and the other Direction 1.