Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
configuration:openvpn [2020/06/08 08:47] dodenhoeft [Network setup] |
configuration:openvpn [2022/08/05 20:05] (current) fachet |
||
|---|---|---|---|
| Line 56: | Line 56: | ||
| ==== Server ==== | ==== Server ==== | ||
| - | ^Local WAN^Remote WAN^ | ||
| - | |10.10.10.2|10.10.10.1| | ||
| ^General^Parameter^ | ^General^Parameter^ | ||
| |Operation mode|Server| | |Operation mode|Server| | ||
| Line 70: | Line 68: | ||
| ^Options^Parameter^ | ^Options^Parameter^ | ||
| |use compression|enable| | |use compression|enable| | ||
| - | |use keepalive|enable| | + | |use keepalive|enable| |
| + | |||
| + | After you done with the server configuation apply the setting and we will continue with the client configuation. | ||
| + | |||
| + | ==== Client ==== | ||
| + | ^General^Parameter^ | ||
| + | |Operation mode|Client| | ||
| + | |Server port|1194| | ||
| + | |Type|TUN| | ||
| + | |Protocol|UDP| | ||
| + | |Cipher|AES-256-CBC| | ||
| + | ^Authentication^Parameter^ | ||
| + | |certificate-based| | ||
| + | |HMAC digest|SHA256| | ||
| + | |Manage keys and certifictaes (below)| | ||
| + | ^Options^Parameter^ | ||
| + | |use compression|enable| | ||
| + | |use keepalive|enable| | ||
| + | |||
| + | ==== minimal configuration ==== | ||
| + | Generate a static key: | ||
| + | |||
| + | openvpn --genkey --secret static.key | ||
| + | |||
| + | Copy the static key to both client and server, over a pre-existing secure channel. | ||
| + | Server configuration file | ||
| + | |||
| + | dev tun | ||
| + | ifconfig 10.8.0.1 10.8.0.2 | ||
| + | secret static.key | ||
| + | |||
| + | Client configuration file | ||
| + | |||
| + | remote myremote.mydomain | ||
| + | dev tun | ||
| + | ifconfig 10.8.0.2 10.8.0.1 | ||
| + | secret static.key | ||