elmariofredo/openvpn.md

## openvpn.md

      
    Raw
  

              openvpn.md
            
          
    OpenVPN

Generate Server Certificates

wget https://github.com/OpenVPN/easy-rsa/archive/master.zip
unzip master.zip
cd easy-rsa-master/easyrsa3
cp vars.example vars
edit variables
cat >> vars << EOF
export KEY_COUNTRY="XX"
export KEY_PROVINCE="YY"
export KEY_CITY="City"
export KEY_ORG="Company"
export KEY_OU="VPN"
export KEY_EMAIL="mail@example.com"
export KEY_CN="vpn.example.com"
EOF
now generate certificates
mkdir keys

source ./vars
./clean-all
./build-ca
./build-key-server server
./build-dh
Generate Client Certificates

source ./vars
./build-key user1
Copy these files to your client over asecure channel (SSH, USB Stick):
ca.crt
user1.crt
user1.key