OpenVPN server configuration file description (transfer), openvpn configuration file
This article describes how to configure the configuration file on the OpenVPN server. In Windows, this configuration file is generally called server. ovpn. in Linux/BSD, this configuration file is generally called server. conf. Although the configuration file name is different, t
Up to now, we have created a complete key and Certificate file, which is stored in the easy-RSA directory and namedKeys. The following table provides a brief description of these files:
Filename
Needed
Purpose
Secret
CA. CRT
SERVER + all clients
Root CA certificate
No
CA. Key
Key signing machine only
Root CA key
Yes
DH {n}. pem
Server only
Diffie Hellman Parameters
No
Server. CRT
Server only
Server Certificat
install OpenSSL first. We will not discuss how to install OpenSSL.I will download openvpn-2.0.beta7.tar.gzand lzo-1.08.tar.gz to/home# Cd/home# Tar zxvf lzo-1.08.tar.gz# Cd lzo-1.08.#./Comfigure# Make# Make install# Tar zxvf openvpn-2.0_beta7.tar.gz# Cd openvpn-2.0_beta7#./Configure -- With-lzo-headers =/usr/local/include -- With-lzo-Lib =/usr/local/lib# Make# M
Server
The http Proxy Server and OpenVPN server can be installed on the same machine.Configure the OpenVPN server (see the previous blog post for installation ):
Cat/etc/openvpn/server. conf
Port 9091
Proto tcp # Enable tcp
Dev tap
Ca. crt
Cert server. crt
Key server. key
Dh dh1024.pem
Server 10.9.0.0 255.255.255.0
# Ifconfig-pool-persist ipp.txt
Clie
Configure openvpn in Ubuntu
First, make sure that the apt-Get of ubuntu can find the openvpn package.Sudo apt-Get update
Install openvpn packageSudo apt-Get install openvpn
Create an openvpn configuration file. The example can be found in the following path:/Usr/share/doc/
Windows. In fact, it has little to do with the system and the diagram is convenient. openvpn and Python are both cross-platform, you only need to modify the path. the Python version is 2.5.
Decompress the package and configure the server first *. copy the Py and openvpn configuration files to your preferred location, such as/usr/local/etc, and then modify the server. path in The py file, consistent with yo
compression.
Http://prdownloads.sourceforge.net/openvpn/openvpn-2.0_beta7.tar.gz
Http://www.oberhumer.com/opensource/lzo/download/lzo-1.08.tar.gz
Openbsd installation will not be mentioned
Openssl is installed by default in openbsd.
I will download openvpn-2.0.beta7.tar.gzand lzo-1.08.tar.gz to/home
# Cd/home
# Tar zxvf lzo-1.08.tar.gz
# Cd lzo-1.08.
#./Comfigur
Server Configuration
1 , Installation
Openvpn
Rpm-IVHHttp://pkgs.repoforge.org/rpmforge-release/rpmforge-release-0.5.2-2.el6.rf.x86_64.rpm
Yum install openvpn-y
Of course, you can also download from this page:Http://openvpn.net/index.php/download.html
2 , Configure the server
2.1 Initialize the server
CD/etc/openvpn/
CP/usr/share/doc/
Centos6.3 openvpn client Centos does not provide Openvpn by default, and there is no openvpn in The yum source. if you want to use yum for installation, install EPEL first. Www.2cto. comShell code wgethttp: // apt. sw. be/redhat/e...
Centos6.3 openvpn client Centos does not provide
server and on the client. go to/usr/local/etc/rc. d and do: ln-s openvpn openvpn_mynetThe "mynet" is The name you give to your VPN. #4-enable it in/etc/rc. conf This symlink will be used by the/etc/rc system to start the openvpn client (or server ), so you need to enable it by adding a line like this in/etc/rc. conf: openvpn_mynet_enable = "YES" #5-create the server co
.
Installation in Windows
Download the installation package installation from the http://www.openvpn.se (http://www.openvpn.se/), where the installation package comes with a Client GUI tool for ease of use.
Configure OpenVPN
Configure OpenVPN Server
Only the configurations in Linux are described. Windows is similar. Create/etc/vpn/server. conf with the following content:
Port 1494
Proto
= 1
# Sysctl-p
Run the following command to check whether cat/proc/sys/net/ipv4/ip_forward Forwarding is enabled. 1 indicates OK.
7. Start the openvpn service.
Run the following command to start/usr/local/sbin/openvpn -- config/etc/server. conf
The openvpn service must be restarted during installation or debugging. Y
-j REJECT --reject-with icmp-host-prohibited COMMIT
Note: The-o em2 in the firewall is the IP address network port of the VPN Server intranet.
The client. ovpn configuration of the client is as follows:
client dev tun proto tcpremote internet 1194 resolv-retry infinitenobindpersist-key persist-tun ca ca.crtcert client1.crtkey client1.keyns-cert-type server tls-auth ta.key 1comp-lzo verb 3
Client:
OpenVPN 2.3.3 Windows 32-bit installation file:Http
Build openvpn based on user password authentication on CentOS 6.6 x64
I. Deployment
For more information about the deployment, see my previous article. Here we will simply modify the previous article.
Http://www.centoscn.com/image-text/config/2015/0717/5874.html
Ii. Modification
# Vim/etc/openvpn/server. conf
Add the following lines of data at the end of the co
directory, and the command clean-allAll contents under the keys are cleared, so cliean-all runs only once before build-ca.Then add the server certificate or client certificate to run
Code:
./Vars./Build-key-server Or./Build-key
3. Configure the serverExtract server. conf from the example
Code:
Sudo CP/usr/share/doc/Openvpn/Examples/sample-config-files/server.con
Run multiple openvpn clients-linux Enterprise Application-Linux server application information on a Linux machine at the same time. The following is a detailed description. The server configuration is as follows:
Port 1194
Proto tcp
Dev tun
Ca/etc/openvpn/keys/ca. crt
Cert/etc/openvpn/keys/vpnserver. crt
Key/etc/openvpn
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.