Openvpn: Difference between revisions

From RARForge
Jump to navigation Jump to search
Line 41: Line 41:
cd /etc/openvpn/easy-rsa
cd /etc/openvpn/easy-rsa
./build-key-server server
./build-key-server server
</source>
<source>
cd /etc/openvpn/easy-rsa
./build-dh
cd /etc/openvpn/easy-rsa/keys
cp dh1024.pem ca.crt server.crt server.key /etc/openvpn
</source>
</source>


Line 47: Line 53:
./build-key client
./build-key client
#./build-key <client_name>
#./build-key <client_name>
</source>
<source>
emacs /etc/sysctl.conf
net.ipv4.ip_forward = 1
sysctl -p
</source>
</source>


Revision as of 17:38, 29 August 2013

Centos 6.4

Install

<source> yum -y install openvpn easy-rsa </source>


<source> mkdir -p /etc/openvpn/easy-rsa/keys cp -rf /usr/share/easy-rsa/2.0/* /etc/openvpn/easy-rsa </source>


<source> emacs /etc/openvpn/easy-rsa/vars </source> <source>

  1. modify variables in file: vars (bottom of file)

export KEY_COUNTRY="US" export KEY_PROVINCE="CA" export KEY_CITY="SanFrancisco" export KEY_ORG="Fort-Funston" export KEY_EMAIL="me@myhost.mydomain" export KEY_EMAIL=mail@host.domain export KEY_CN=changeme export KEY_NAME=changeme export KEY_OU=changeme </source>


<source> cd /etc/openvpn/easy-rsa/ source ./vars ./clean-all ./build-ca </source>


<source> cd /etc/openvpn/easy-rsa ./build-key-server server </source> <source> cd /etc/openvpn/easy-rsa ./build-dh cd /etc/openvpn/easy-rsa/keys cp dh1024.pem ca.crt server.crt server.key /etc/openvpn </source>

<source> cd /etc/openvpn/easy-rsa ./build-key client

  1. ./build-key <client_name>

</source>


<source> emacs /etc/sysctl.conf net.ipv4.ip_forward = 1 sysctl -p </source>

Retrieved from "https://rarforge.com/w/index.php?title=Openvpn&oldid=824"