This shows you the differences between two versions of the page.
Next revision | Previous revisionLast revisionBoth sides next revision | ||
computing:vpnserver-wndr3800 [2023/05/22 02:17] – created oemb1905 | computing:vpnserver-wndr3800 [2024/02/11 22:46] – oemb1905 | ||
---|---|---|---|
Line 76: | Line 76: | ||
tls-version-min 1.2 | tls-version-min 1.2 | ||
tls-cipher TLS-DHE-RSA-WITH-AES-256-GCM-SHA384: | tls-cipher TLS-DHE-RSA-WITH-AES-256-GCM-SHA384: | ||
- | dh | + | dh |
- | ca | + | ca |
- | key easy-rsa/pki/ | + | key easy-rsa/ |
- | cert easy-rsa/pki/ | + | cert easy-rsa/ |
ifconfig-pool-persist / | ifconfig-pool-persist / | ||
client-config-dir clients | client-config-dir clients | ||
Line 87: | Line 87: | ||
topology subnet | topology subnet | ||
push " | push " | ||
- | ifconfig | + | ifconfig 10.66.66.1 255.255.255.0 |
- | route-gateway | + | route-gateway 10.66.66.1 |
- | push " | + | push " |
- | ifconfig-pool | + | ifconfig-pool 10.66.66.32 10.66.66.254 255.255.255.0 |
- | push " | + | push " |
+ | push " | ||
+ | push " | ||
+ | client-to-client | ||
+ | mute 5 | ||
+ | log / | ||
+ | keepalive 10 120 | ||
+ | persist-key | ||
+ | persist-tun | ||
Once those configuration files are built, you can now create the certificate authority, the diffie-hellman key, and certificate/ | Once those configuration files are built, you can now create the certificate authority, the diffie-hellman key, and certificate/ | ||
Line 158: | Line 166: | ||
openvpn / | openvpn / | ||
- | Now that the service is running, let's log in to the router and adjust the settings a bit. In your web browser, visit 192.168.1.1, | + | Now that the service is running, let's log in to the router and adjust the settings a bit. In your web browser, visit 192.168.1.1, |
+ | |||
+ | {{ : | ||
+ | |||
+ | It is now time to test the vpn server //from your client workstation//: | ||
cd ~/ | cd ~/ |