This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Last revision Both sides next revision | ||
пакет_openvpn [2023/01/23 15:56] val [Использование PAM аутентификации] |
пакет_openvpn [2024/06/14 07:00] val |
||
---|---|---|---|
Line 38: | Line 38: | ||
push "route 192.168.100+X.0 255.255.255.0" | push "route 192.168.100+X.0 255.255.255.0" | ||
+ | #push "route 192.168.X.0 255.255.255.0" | ||
#push "dhcp-option DNS 192.168.X.10" | #push "dhcp-option DNS 192.168.X.10" | ||
#push "block-outside-dns" | #push "block-outside-dns" | ||
+ | #push "dhcp-option DOMAIN corpX.un" | ||
dh /etc/openvpn/dh2048.pem | dh /etc/openvpn/dh2048.pem | ||
Line 56: | Line 58: | ||
# openvpn --config /etc/openvpn/openvpn1.conf | # openvpn --config /etc/openvpn/openvpn1.conf | ||
- | # timeout 5 openvpn --config /etc/openvpn/openvpn1.conf; test $? -eq 124 && echo OK | + | # timeout 5 openvpn --port 65500 --config /etc/openvpn/openvpn1.conf; test $? -eq 124 && echo OK |
</code> | </code> | ||
Line 67: | Line 69: | ||
</code> | </code> | ||
- | === Настройка клиента === | + | ==== Настройка клиента ==== |
+ | |||
+ | === Windows === | ||
* [[https://mail.bmstu.ru/~postmaster/openvpn-install-2.4.0-I601.exe]] | * [[https://mail.bmstu.ru/~postmaster/openvpn-install-2.4.0-I601.exe]] | ||
Line 75: | Line 79: | ||
<code> | <code> | ||
+ | Start OpenVPN GUI | ||
+ | |||
C:\>notepad C:\Users\student\OpenVPN\config\user1.ovpn | C:\>notepad C:\Users\student\OpenVPN\config\user1.ovpn | ||
</code><code> | </code><code> | ||
Line 85: | Line 91: | ||
cert user1.crt | cert user1.crt | ||
key user1.key | key user1.key | ||
+ | </code> | ||
+ | |||
+ | === Linux === | ||
+ | |||
+ | <code> | ||
+ | debian:~# apt install openvpn resolvconf wget | ||
+ | |||
+ | debian:~# openvpn --script-security 2 --up /etc/openvpn/update-resolv-conf --down /etc/openvpn/update-resolv-conf --config user1.ovpn | ||
</code> | </code> | ||
Line 96: | Line 110: | ||
... | ... | ||
client-config-dir ccd | client-config-dir ccd | ||
+ | #route 192.168.100+Y.0 255.255.255.0 | ||
... | ... | ||
</code><code> | </code><code> | ||
Line 101: | Line 116: | ||
</code><code> | </code><code> | ||
ifconfig-push 192.168.200+X.4*N+2 192.168.200+X.4*N+1 | ifconfig-push 192.168.200+X.4*N+2 192.168.200+X.4*N+1 | ||
+ | #iroute 192.168.100+Y.0 255.255.255.0 | ||
</code> | </code> | ||
Line 141: | Line 157: | ||
===== Настройка peer2peer конфигурации ===== | ===== Настройка peer2peer конфигурации ===== | ||
+ | |||
+ | * В новых версиях (с Debian12) теперь так: [[https://wiki.gentoo.org/wiki/OpenVPN/fingerprint-authentication|OpenVPN/fingerprint-authentication]] | ||
==== Debian/Ubuntu/FreeBSD ==== | ==== Debian/Ubuntu/FreeBSD ==== |