This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
wiki:openvpn [2020/02/21 11:53] 127.0.0.1 external edit |
— (current) | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | ===== OpenVPN ===== | ||
- | |||
- | This topic is destined to users with some basic knowledge about VPN, who know how to create and setup a VPN client/server. | ||
- | |||
- | ==== Configuration ==== | ||
- | |||
- | The configuration of the VPN requires: | ||
- | * A client configuration file, named ''client.conf''. This is the main configuration file.\\ Make sure that non-interactive authentication is enabled (the connection is established by a daemon, the password cannot be entered manually) | ||
- | * A “Certification Authority Certificate” file, authenticating the remote server, ''vpn-server-certificate.crt'' | ||
- | * A “User key and certificate archive” file, authenticating the iFemtoCell SPN (the client), ''ifemto-spn-auth.p12'' | ||
- | |||
- | |||
- | All those files have to be uploaded via the web UI. | ||
- | |||
- | Here is an example of a client configuration file: | ||
- | |||
- | <code> | ||
- | ################################################# | ||
- | # # | ||
- | # Client-side OpenVPN 2.X config file for # | ||
- | # connecting to multi-client server. # | ||
- | # # | ||
- | # Comments are preceded with '#' or ';' # | ||
- | # # | ||
- | ################################################# | ||
- | |||
- | # Specify that we are a client and that we | ||
- | # will be pulling certain config file directives | ||
- | # from the server. | ||
- | client | ||
- | |||
- | #Tunnel | ||
- | dev tun | ||
- | |||
- | #Server | ||
- | remote vpn-server.example.com | ||
- | |||
- | #Certification Authority Certificate - Server Authentication | ||
- | ca vpn-server-certificate.crt | ||
- | |||
- | #User Key and certificate Archive - Client Authentication | ||
- | pkcs12 ifemto-spn-auth.p12 | ||
- | </code> | ||
- | |||
- | The two other files (.crt and .p12) have to be created according to your server configuration. | ||
- | |||
- | ==== VPN Server Setup/Configuration ==== | ||
- | |||
- | Here an example of creating and configuring an OpenVPN server | ||
- | |||
- | - [[wiki:vpn_pki|VPN - PKI management]]: VPN server setup | ||
- | - [[wiki:vpn_server|VPN server configuration]]: VPN server configuration | ||
- | |||
- | ==== Connection ==== | ||
- | |||
- | Once the files are uploaded and the VPN feature is activated in the administration page, the VPN tunnel will automatically open. | ||
- | |||