Changes

Jump to: navigation, search

OpenVPN

2,403 bytes added, 18:06, 27 December 2013
/* Command Line */
[[Category:Services]]
== OpenVPN Information ==* COMING SOONEasy access to the FIXME [[Network]] from the outside world* This is part of the [[Internal_Server]]* You must have a local account on foo and be in the '''vpnusers''' unix group == Client configuration ===== Command Line ===* Copy this to ca.crt<pre>-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----</pre>* Put the following content in a ''foo.cfg'' configuration file<pre>clientdev tunproto udpremote foo.fixme.ch 1194resolv-retry infinitenobindpersist-keypersist-tunca ca.crtcomp-lzoverb 4auth-user-passauth-nocache</pre>* Add the following to route all ipv4 traffic (with dns) throught the VPN (ipv6 not supported...??) redirect-gateway def1* /!\ The certificate ca.crt must be in the same directory as foo.cfg, or change path in foo.cfg /!\* Then connect to the VPN<pre>$ openvpn foo.cfg</pre> === Gnome Network manager ===<gallery>File:Screenshot_from_2013-01-02_00-51-24.pngFile:Screenshot_from_2013-01-02_00-51-51.pngFile:Screenshot_from_2013-01-02_00-52-14.pngFile:Screenshot_from_2013-01-02_00-52-31.pngFile:Screenshot_from_2013-01-02_00-52-48.png</gallery>
Rorist
ControlGroup, administrator
4,205
edits
Retrieved from "https://fixme.ch/wiki/Special:MobileDiff/3515...5148"