From b5db30985a40937582099c62c8edb45446f542bc Mon Sep 17 00:00:00 2001
From: bole5 <bole5@yahoo.com>
Date: Wed, 18 May 2016 11:30:55 +0200
Subject: [PATCH] Fix TLS handshake error

When connecting with Tunnelblick client I received following error:
TLS_ERROR: BIO read tls_read_plaintext error: error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown protocol
TLS Error: TLS object -> incoming plaintext read error
TLS Error: TLS handshake failed

To fix the problem the same tls-version-min directive used in server configuration has to be added to the client config.
---
 Default.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/Default.txt b/Default.txt
index 2c4d2af..cd519e1 100644
--- a/Default.txt
+++ b/Default.txt
@@ -8,6 +8,7 @@ persist-key
 persist-tun
 key-direction 1
 remote-cert-tls server
+tls-version-min 1.2
 verify-x509-name SRVRNAME name
 cipher AES-256-CBC
 auth SHA256