Nick, when you say copy the certificates are you referring to the VPN certificate from the command "openvpn --genkey --secret /etc/openvpn/static.key" or the system certificates the Certificate Manager creates? Where do I copy these from and to where?

Peter, I tried this two different ways:
1.) I created a temporary VPN tunnel with another system and connected the slave to the master via the internal master host name. Then configured the COS OpenVPN.
2.) I opened the required sync ports to the internet and connected the slave to the master via the external master host name. The closed the ports and added a DNS record on the slave to point the external master host name to the internal address.

In both cases I got OpenVPN working but had install and configuring it manually. The COS OpenVPN install required the Certificate Manager to get setup and this is what prompted this thread.

System 1.) has a good VPN connection but I am having connectivity problems with the master server. This may be an issue with how I have Windows Network setup.
System 2.) seems to be working OK.

The Master is directly on the internet but both the slaves are behind NAT's and are in the DMZ.

Kevin