- [Show pagesource]
- [Old revisions]
- [[unknown link type]]
- []
This is an old revision of the document!
Table of Contents
OpenVPN
Získání certifikátu
Vygenerujeme certifikat, ulozi se do souboru ta.key
openvpn –genkey –secret ta.key
server konfigurace
tls-auth ta.key 0
server konfigurace
tls-auth ta.key 1
Příklad
port 1194 proto tcp ;proto udp dev tun0 ca ca.crt cert server.crt key server.key dh dh2048.pem server 192.168.1.2 255.255.255.0 ifconfig-pool-persist ipp.txt client-config-dir ccd route 192.168.40.128 255.255.255.248 # Then create a file ccd/Thelonious with this line: iroute 192.168.40.128 255.255.255.248 ifconfig-push 10.9.0.1 10.9.0.2 # use this, if you wanna use fixed VPN IP push "route 192.168.182.0 255.255.255.0" push "redirect-gateway" push "dhcp-option DNS 192.168.183.1" push "dhcp-option WINS 10.8.0.1" client-to-client keepalive 10 120 tls-auth ta.key 0 # secret file cipher BF-CBC # Blowfish cipher AES-128-CBC # AES cipher DES-EDE3-CBC # Triple-DES comp-lzo # compresion ;max-clients 100 status openvpn-status.log
Linky
doc/openvpn.1232570522.txt.gz · Last modified: 2013/04/11 14:44 (external edit)