Postup
Na serveru vytvorit certfikaty:
# cd /etc/openvpn/easy-rsa # source ./vars # ./build-key {jmeno_klienta}
Vytvorit soubor /etc/openvpn/client.conf :
client dev tun proto tcp remote ini.inited.cz 1723 resolv-retry infinite nobind persist-key persist-tun comp-lzo verb 3 tls-version-min 1.0 remote-cert-tls server cipher BF-CBC auth-nocache <ca> -----BEGIN CERTIFICATE----- xxx -----END CERTIFICATE----- </ca> <cert> -----BEGIN CERTIFICATE----- xxx -----END CERTIFICATE----- </cert> <key> -----BEGIN PRIVATE KEY----- xxx -----END PRIVATE KEY----- </key>
Po restartu se VPN sama nastartuje a pripoji k serveru
Na serveru nastavit statickou IP adresu, do ccd/{jmeno_klienta} pridat:
ifconfig-push 10.8.0.jehoIP 10.8.0.jehoIP+1