Openvpn: Difference between revisions
Line 41: | Line 41: | ||
cd /etc/openvpn/easy-rsa | cd /etc/openvpn/easy-rsa | ||
./build-key-server server | ./build-key-server server | ||
</source> | |||
<source> | |||
cd /etc/openvpn/easy-rsa | |||
./build-dh | |||
cd /etc/openvpn/easy-rsa/keys | |||
cp dh1024.pem ca.crt server.crt server.key /etc/openvpn | |||
</source> | </source> | ||
Line 47: | Line 53: | ||
./build-key client | ./build-key client | ||
#./build-key <client_name> | #./build-key <client_name> | ||
</source> | |||
<source> | |||
emacs /etc/sysctl.conf | |||
net.ipv4.ip_forward = 1 | |||
sysctl -p | |||
</source> | </source> | ||
Revision as of 17:38, 29 August 2013
Centos 6.4
Install
<source> yum -y install openvpn easy-rsa </source>
<source>
mkdir -p /etc/openvpn/easy-rsa/keys
cp -rf /usr/share/easy-rsa/2.0/* /etc/openvpn/easy-rsa
</source>
<source>
emacs /etc/openvpn/easy-rsa/vars
</source>
<source>
- modify variables in file: vars (bottom of file)
export KEY_COUNTRY="US" export KEY_PROVINCE="CA" export KEY_CITY="SanFrancisco" export KEY_ORG="Fort-Funston" export KEY_EMAIL="me@myhost.mydomain" export KEY_EMAIL=mail@host.domain export KEY_CN=changeme export KEY_NAME=changeme export KEY_OU=changeme </source>
<source>
cd /etc/openvpn/easy-rsa/
source ./vars
./clean-all
./build-ca
</source>
<source>
cd /etc/openvpn/easy-rsa
./build-key-server server
</source>
<source>
cd /etc/openvpn/easy-rsa
./build-dh
cd /etc/openvpn/easy-rsa/keys
cp dh1024.pem ca.crt server.crt server.key /etc/openvpn
</source>
<source> cd /etc/openvpn/easy-rsa ./build-key client
- ./build-key <client_name>
</source>
<source>
emacs /etc/sysctl.conf
net.ipv4.ip_forward = 1
sysctl -p
</source>