Openvpn

From Wiki of WFilter NG Firewall
(Difference between revisions)
Jump to: navigation, search
(Created page with "{{DISPLAYTITLE:OpenVPN}} = Introduction = OpenVPN is an open-source software application that implements VPN based on SSL. This module can setup an OpenVPN server in WFilter...")
 
Line 5: Line 5:
 
OpenVPN is an open-source software application that implements VPN based on SSL. This module can setup an OpenVPN server in WFilterROS.
 
OpenVPN is an open-source software application that implements VPN based on SSL. This module can setup an OpenVPN server in WFilterROS.
  
= OpenVPN Settings =
+
= Server Settings =
 +
 
 +
* Protocol and port: connection protocol and port, shall be consistent with the client settings.
 +
* Client Subnet: WFilterROS's openVPN works in "subnet" mode. In this mode, OpenVPN will setup a new subnet, which can not same as existing LAN subnets.
 +
 
 +
[[File:openvpn_settings1.png]]
 +
 
 +
* Master CA certificate: the CA certificate which shall be copied into openVPN client directory, you can click "Replace" to generate a new certificate.
 +
 
 +
[[File:openvpn_settings2.png]]
  
 
= OpenVPN Clients =
 
= OpenVPN Clients =

Revision as of 15:14, 11 August 2016


Contents

1 Introduction

OpenVPN is an open-source software application that implements VPN based on SSL. This module can setup an OpenVPN server in WFilterROS.

2 Server Settings

  • Protocol and port: connection protocol and port, shall be consistent with the client settings.
  • Client Subnet: WFilterROS's openVPN works in "subnet" mode. In this mode, OpenVPN will setup a new subnet, which can not same as existing LAN subnets.

Openvpn settings1.png

  • Master CA certificate: the CA certificate which shall be copied into openVPN client directory, you can click "Replace" to generate a new certificate.

Openvpn settings2.png

3 OpenVPN Clients

3.1 Windows Clients

  • Download and install the offical openvpn client: https://openvpn.net/index.php/open-source/downloads.html
  • Download openvpn certificate in WFilterROS, copy it to openvpn's config directoy with name "ca.crt".
  • In config directory of openvpn, create a new text file named "myvpn.ovpn", with below content:
client
dev tun
proto udp                   #Connection protocol, same as the server settings.
remote 192.168.1.246 1194   #Server IP(domain) and port
nobind
persist-key
persist-tun
ca ca.crt                   #ca.crt filename, same directory with the myvpn.ovpn
verb 3
auth-user-pass
  • Now you can launch "OpenVPN GUI" with administrator privilege, input correct username and password to access VPN.

Openvpn winclient01.png

Openvpn winclient02.png

Openvpn winclient03.png

Personal tools
Namespaces

Variants
Actions
Navigation
Tools