Home » Forums » Linux » Linux general

OpenVPN 2.0 for Linux

Submitted by eriatlov
on October 5, 2005 - 6:06am

=============================================
LZO:
http://www.oberhumer.com/opensource/lzo/download/lzo-1.08.tar.gz

CPPFLAGS="-I/usr/local/include"
LDFLAGS="-L/usr/local/lib"
export CPPFLAGS
export LDFLAGS

./configure \
--enable-shared

make
make install

=============================================
OPENVPN:
web: http://openvpn.net/download.html
howto: http://www.linuxjournal.com/article/7949
file: openvpn-2.0.tar.gz

./configure --prefix=/usr/local \
--with-ssl-headers=/usr/local/include/openssl \
--with-ssl-lib=/usr/local/lib \
--with-lzo-headers=/usr/local/include \
--with-lzo-lib=/usr/local/lib \
--with-ifconfig-path=/sbin/ifconfig \
--with-route-path=/sbin/route \
--enable-password-save

make
make install

cd /var/tmp/openvpn-2.0.2/easy-rsa
vi vars

===
export D=`pwd`
export KEY_CONFIG=$D/openssl.cnf
export KEY_DIR=$D/keys
echo NOTE: when you run ./clean-all, I will be doing a rm -rf on $KEY_DIR
export KEY_SIZE=1024

export KEY_COUNTRY=MY
export KEY_PROVINCE=Kuala_Lumpur
export KEY_CITY=Kuala_Lumpur
export KEY_ORG="OpenVPN"
export KEY_EMAIL="foobar@foobar.tld"
===

. ./vars
./clean-all
./build-ca

./build-key-server server
./build-key client1
./build-dh

cd /var/tmp/openvpn-2.0.2/easy-rsa/keys
mkdir /usr/local/openvpn/keys
cp /var/tmp/openvpn-2.0.2/easy-rsa/keys/* /usr/local/openvpn/keys
cd /usr/local/openvpn/keys
openvpn --genkey --secret ta.key

Important!!!

copy the following files to the WINDOWS CLIENT
under the following directory:

C:\Program Files\OpenVPN\config

-rw-r--r-- 1 root root 1346 Sep 18 12:46 ca.crt
-rw-r--r-- 1 root root 3702 Sep 18 12:46 client1.crt
-rw------- 1 root root 887 Sep 18 12:46 client1.key
-rw------- 1 root root 636 Sep 18 12:48 ta.key

=============================================
SERVER (/usr/local/openvpn/openvpn.conf)

note: keys are stored in /usr/local/openvpn/keys

local
port 1194
proto udp
dev tun
ca keys/ca.crt
cert keys/server.crt
key keys/server.key
dh keys/dh1024.pem
tls-auth keys/ta.key 0
server 10.10.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "redirect-gateway"
push "dhcp-option DNS 1.2.3.4"
client-to-client
duplicate-cn
keepalive 10 120
cipher DES-EDE3-CBC
comp-lzo
max-clients 100
user nobody
group nobody
persist-key
persist-tun
status openvpn-status.log
log openvpn.log
log-append openvpn.log
verb 3
mute 20

=============================================
WINDOWS CLIENT (C:\Program Files\OpenVPN\config\client.ovpn)

note: keys are stored in
C:\Program Files\OpenVPN\config

client
dev tun
proto udp
remote 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client1.crt
key client1.key
tls-auth ta.key 1
comp-lzo
verb 3
mute 20
cipher DES-EDE3-CBC
================