disable-dco block-outside-dnsDCO отключил из-за предупреждений:
Some --dhcp-option or --dns options require DHCP server, which is not supported by the selected ovpn-dco driver. They will be ignored.Из документации:
--block-outside-dns |
Block DNS servers on other network adapters to prevent DNS leaks. This option prevents any application from accessing TCP or UDP port 53 except one inside the tunnel. It uses Windows Filtering Platform (WFP) and works on Windows Vista or later.
This option is considered unknown on non-Windows platforms and unsupported on Windows XP, resulting in fatal error. You may want to use --setenv opt or --ignore-unknown-option (not suitable for Windows XP) to ignore said error. Note that pushing unknown options from server does not trigger fatal errors. |
--disable-dco |
Disables the opportunistic use of data channel offloading if available. Without this option, OpenVPN will opportunistically use DCO mode if the config options and the running kernel supports using DCO.
Data channel offload currently requires data-ciphers to only contain AEAD ciphers (AES-GCM and Chacha20-Poly1305) and Linux with the ovpn-dco module. Note that some options have no effect or cannot be used when DCO mode is enabled. On platforms that do not support DCO disable-dco has no effect. |
Links:
OpenVPN: Using ovpn-dco