User Tools

Site Tools


openvpn

Certificate creation

sudo mkdir /etc/openvpn/easy-rsa/
sudo cp -r /usr/share/doc/openvpn/examples/easy-rsa/2.0/* /etc/openvpn/easy-rsa/

/etc/openvpn/easy-rsa/vars:

export KEY_COUNTRY="US"
export KEY_PROVINCE="NY"
export KEY_CITY="NewYork"
export KEY_ORG="example.com"
export KEY_EMAIL="bob@example.com"
cd /etc/openvpn/easy-rsa/
source vars
./clean-all
./build-dh
./pkitool --initca OR ./build-ca
./pkitool --server server OR ./build-key-server server
sudo openvpn --genkey --secret keys/ta.key

New client:

./build-key newclient
openvpn.txt · Last modified: 2013/12/25 16:47 (external edit)