...
| Code Block |
|---|
|
cd keys
cp server.crt server.key ca.crt dh2048.pem ta.key /etc/openvpn/ |
| Code Block |
|---|
|
cd keys
cp server.crt server.key ca.crt dh2048.pem ta.key /etc/openvpn/ |
Конфигурация
Создаем файл конфигурации server.conf:
| Code Block |
|---|
| title | /etc/openvpn/server.conf |
|---|
|
mode server
daemon vpn-server
#local 203.0.113.42
port 1194
proto udpudp4
dev tun
ca /etc/openvpn/ca.crt
cert /etc/openvpn/server.crt
key /etc/openvpn/server.key
dh /etc/openvpn/dh2048.pem # либо dh1024.pem, в зависимости от размера ключа
plugin /usr/lib/openvpn/radiusplugin.so /etc/openvpn/radius/radius.cnf
# ifconfig-pool-persist ipp.txt persist-key
tls-server
tls-auth ta.key 0
cipher DES-EDE3-CBC
server 192.168.50.0 255.255.255.0
push "redirect-gateway"
ifconfig-pool-persist ipp.txt
keepalive 10 120
#comp-lzo
user nobody
group nogroup
persist-key
persist-tun
status /var/log/openvpn/openvpn-status.log
log-append /var/log/openvpn/openvpn.log
verb 4
mute 20
client-to-client
client-config-dir ccd
route 192.168.50.0 255.255.255.0
|
...