Openvpn: Difference between revisions
From DWIKI
mNo edit summary |
mNo edit summary |
||
| Line 3: | Line 3: | ||
*[http://forums.gentoo.org/viewtopic.php?t=233080 Openvpn howto] | *[http://forums.gentoo.org/viewtopic.php?t=233080 Openvpn howto] | ||
*[https://www.thegeekpub.com/271035/openvpn-mtu-finding-the-correct-settings/ Fixing MTU settings for Openvpn] | *[https://www.thegeekpub.com/271035/openvpn-mtu-finding-the-correct-settings/ Fixing MTU settings for Openvpn] | ||
=HOWTO= | |||
==Using easyrsa== | |||
https://community.openvpn.net/openvpn/wiki/EasyRSA3-OpenVPN-Howto | |||
===Revoke certificate=== | |||
./easyrsa revoke someclient | |||
./easyrsa gen-crl | |||
Check crl | |||
openssl crl -in -text pki/crl.pem | |||
Check the serials numbers of the revoke certs | |||
grep ^R pki/index.txt | |||
==Push DNS to linux clients== | |||
http://blog.milford.io/2011/02/setting-up-an-openvpn-client-for-ubuntudebianmint-cli-edition/ | |||
echo "up /etc/openvpn/update-resolv-conf" >> ~/client/client.conf | |||
echo "down /etc/openvpn/update-resolv-conf" >> ~/client/client.conf | |||
=FAQ= | =FAQ= | ||
| Line 9: | Line 27: | ||
== | ==TLS Error: local/remote TLS keys are out of sync== | ||
First give it some time | |||
Revision as of 11:37, 1 November 2022
HOWTO
Using easyrsa
https://community.openvpn.net/openvpn/wiki/EasyRSA3-OpenVPN-Howto
Revoke certificate
./easyrsa revoke someclient ./easyrsa gen-crl
Check crl
openssl crl -in -text pki/crl.pem
Check the serials numbers of the revoke certs
grep ^R pki/index.txt
Push DNS to linux clients
http://blog.milford.io/2011/02/setting-up-an-openvpn-client-for-ubuntudebianmint-cli-edition/
echo "up /etc/openvpn/update-resolv-conf" >> ~/client/client.conf echo "down /etc/openvpn/update-resolv-conf" >> ~/client/client.conf
FAQ
NOTE: FlushIpNetTable failed on interface
This happens on windows, ignore it.
TLS Error: local/remote TLS keys are out of sync
First give it some time
