openvpn安装步骤
来源:互联网 发布:淘宝sony嘉诚 编辑:程序博客网 时间:2024/06/08 04:38
1、openvpn安装
yum install gcc gcc-c++
yum install openssl*
echo "1" >/proc/sys/net/ipv4/ip_forward
http://www.oberhumer.com/opensource/lzo/download/
lzo-2.06.tar.gz
./configure
make
make install
openvpn-2.2.2.tar.gz
./configure --with-lzo-headers=/usr/local/include --with-lzo-lib=/usr/local/lib
make
make install
2、生成证书
# mkdir -p /etc/openvpn
# source ./vars
./build-ca
./build-key-server server
./build-key-pass client
./build-dh
# cp -ap keys /etc/openvpn/
3、服务端配置 /etc/openvpn/server.conf
local 192.168.100.10
port 1194
proto tcp
dev tun
ca /etc/openvpn/keys/ca.crt
cert /etc/openvpn/keys/server.crt
key /etc/openvpn/keys/server.key
dh /etc/openvpn/keys/dh1024.pem
server 192.168.3.0 255.255.255.0
push "route 192.168.2.0 255.255.255.0"
ifconfig-pool-persist ipp.txt
keepalive 10 120
comp-lzo
persist-key
persist-tun
status openvpn-status.log
verb 3
client-to-client
;duplicate-cn
log /var/log/openvpn.log
4、启动服务
cp /root/openvpn-2.2.2/sample-scripts/openvpn.init /etc/init.d/openvpn
chkconfig --add openvpn
service openvpn start
5、客户端配置 client.ovpn
client
dev tun
proto tcp
remote 192.168.100.10 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
ns-cert-type server
comp-lzo
verb 3
yum install gcc gcc-c++
yum install openssl*
echo "1" >/proc/sys/net/ipv4/ip_forward
http://www.oberhumer.com/opensource/lzo/download/
lzo-2.06.tar.gz
./configure
make
make install
openvpn-2.2.2.tar.gz
./configure --with-lzo-headers=/usr/local/include --with-lzo-lib=/usr/local/lib
make
make install
2、生成证书
# mkdir -p /etc/openvpn
# cd /root/openvpn-2.2.2/easy-rsa/2.0
# openssl version
OpenSSL 0.9.8e-fips-rhel5 01 Jul 2008
# cp openssl-0.9.8.cnf openssl.cnf
# source ./vars
./build-ca
./build-key-server server
./build-key-pass client
./build-dh
# cp -ap keys /etc/openvpn/
3、服务端配置 /etc/openvpn/server.conf
local 192.168.100.10
port 1194
proto tcp
dev tun
ca /etc/openvpn/keys/ca.crt
cert /etc/openvpn/keys/server.crt
key /etc/openvpn/keys/server.key
dh /etc/openvpn/keys/dh1024.pem
server 192.168.3.0 255.255.255.0
push "route 192.168.2.0 255.255.255.0"
ifconfig-pool-persist ipp.txt
keepalive 10 120
comp-lzo
persist-key
persist-tun
status openvpn-status.log
verb 3
client-to-client
;duplicate-cn
log /var/log/openvpn.log
4、启动服务
cp /root/openvpn-2.2.2/sample-scripts/openvpn.init /etc/init.d/openvpn
chkconfig --add openvpn
service openvpn start
5、客户端配置 client.ovpn
client
dev tun
proto tcp
remote 192.168.100.10 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
ns-cert-type server
comp-lzo
verb 3
拷贝ca.crt client.crt client.key client.ovpn 到 安装目录的config目录
linux客户端也是使用此配置文件,启动方法 openvpn --config client.conf
6、收回某一个用户
cd /root/openvpn-2.2.2/easy-rsa/2.0
./revoke-full client
cp keys/crl.pem /etc/openvpn/keys
编辑server.conf增加
crl-verify /etc/openvpn/keys/crl.pem
7、实现两个不同地区网络互联
在server.conf增加以下内容
client-config-dir /usr/local/vpn/ccd
route 192.168.4.0 255.255.255.0 (客户端内网络段)
新建目录和以用户命名文件
mkdir -p /usr/local/vpn/ccd
vi client
iroute 192.168.4.0 255.255.255.0
阅读全文
0 0
- openvpn安装步骤
- centOS7安装openVPN大概步骤以及配置文件详解
- OPENVPN安装
- Openvpn安装
- 安装openvpn
- openvpn安装
- CenOS 下安装OpenVPN
- debian6安装openvpn
- centos 安装openvpn
- openvpn安装配置
- ubuntu12.04安装openvpn
- UBUNTU 安装OPENVPN
- openvpn安装配置
- OpenVPN安装配置
- CentOS5.4安装OpenVPN
- openvpn 安装配置
- OPENVPN 安装教程
- ubuntu openvpn安装
- 数据库基本_SQL语句大全
- hbase使用Java的一些基础操作
- uml建模工具安装与破解
- 编程技术面试的五大要点
- Python 内置函数
- openvpn安装步骤
- java-多线程(二)
- spring 简单模拟 ioc
- 实现Spring IOC
- kd树理解——特征匹配、机器学习
- Android Dialog弹出输入法卡顿,容易发生ANR
- CSDN的搜索功能怎么了?
- 黑心啤酒厂
- 企业网站推广的方法有哪些?