With the availability of 3G on the road, or wireless hotspots everywhere, being able to connect, securely, to a remote private network from anywhere is ideal.Its fully open source, its supported on Linux, Windows, and OS X, its robust, and its secure.
![]() Most distributions include OpenVPN; for the server setup, I am using OpenVPN 2.0.9 as provided by the RPMForge repository for CentOS 5. At this point, for the clients, you want to copy the appropriate files to them securely (i.e., via SSH or on a USB stick); the files the clients need are ca.crt, client1.crt, and client1.key (or whatever you named the files when you generated them with the build-key script). To get up and running quickly, copy one of the example config files. The primary things you want to do are to uncomment the user and group directives, to make the openvpn process run as the unprivileged nobody user. You may also want to change the local directive to make it listen to one specific IP address. This would be the IP to which your firewall is forwarding UDP port 1194. As well, you will want to set the client-to-client directive to enable it, and also set the push directives for route and DNS options. What follows is a comment-stripped server.conf, as an example. This can be done by changing the route on the gateway of the servers network to route packets to the client network (10.8.0.132) through the OpenVPN server (if the server happens to be the gateway as well, you dont have to do anything additional to accomplish this). How this is done largely depends on the operating system of the gateway. For instance, from a machine on the server LAN (not the server). Setting Up Vpn For A But Running Windows Series We WillIve made the assumption that the client is correctly configured here, simply to illustrate how it should look when it all works together, but in the next parts of this series we will get into more depth with the client configuration. He has been writing about and developing on Linux for over 10 years and is a veteran Mac user.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |