ealmr's wiki

User Tools

Site Tools

Trace:
vpn

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
vpn [2017/10/18 17:07] fe80:377d:929c:b5b1:d6e8:6813:106e:7193vpn [2017/10/21 08:51] (current) fe80:a01f:f991:9991:a229:fec6:a8a5:1c99
Line 38: Line 38:
  
 ===== OpenVPN ===== ===== OpenVPN =====
 +
 +installation:
  
 <code> <code>
-apt-get install openvpn+apt-get install openvpn easy-rsa
 gunzip -c /usr/share/doc/openvpn/examples/sample-config-files/server.conf.gz > /etc/openvpn/server.conf gunzip -c /usr/share/doc/openvpn/examples/sample-config-files/server.conf.gz > /etc/openvpn/server.conf
 sed -i 's/^dh dh1024.pem/dh dh2048.pem/g' /etc/openvpn/server.conf sed -i 's/^dh dh1024.pem/dh dh2048.pem/g' /etc/openvpn/server.conf
Line 47: Line 49:
 </code> </code>
  
 +server.conf directives:
 +
 +<code>
 +loca
 +proto #can both udp and tcp
 +ca
 +cert 
 +key
 +dh dh2048.pem
 +server 
 +push "redirect-gateway def1 bypass-dhcp"
 +push "dns-option DNS 8.8.8.8"
 +cipher
 +auth SHA256
 +</code>
 +
 +cert:
 +
 +<code>
 +make-cadir ~/openvpn-ca
 +export KEY_NAME="server" # in vars
 +./build-ca
 +./build-key-server server
 +./build-dh
 +openvpn --genkey --secret keys/ta.key
 +./build-key client1
 +</code>
 +
 +firewall:
 +
 +    -A POSTROUTING -s 10.8.0.0/8 -o wlp11s0 -j MASQUERADE
vpn.1508346435.txt.gz · Last modified: by fe80:377d:929c:b5b1:d6e8:6813:106e:7193
Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki