OVPN lan to lan bridge: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
| Zeile 30: | Zeile 30: | ||
log-append /var/log/openvpn | log-append /var/log/openvpn | ||
compress lzo | compress lzo | ||
| + | verb 3 | ||
| + | </pre> | ||
| + | =Clientsite= | ||
| + | ==Bridging stuff== | ||
| + | *openvpn --mktun --dev tap1 | ||
| + | *brctl addbr vmbr1 | ||
| + | *brctl addif vmbr1 eth1 | ||
| + | *brctl addif vmbr1 tap1 | ||
| + | *ifconfig eth1 0.0.0.0 promisc up | ||
| + | *ifconfig tap1 0.0.0.0 promisc up | ||
| + | *ifconfig vmbr1 0.0.0.0 up | ||
| + | ==Openvpn stuff== | ||
| + | */etc/openvpn/client.conf | ||
| + | <pre> | ||
| + | port 5555 | ||
| + | daemon | ||
| + | dev tap1 | ||
| + | remote kitan.tuxmen.de | ||
| + | tls-client | ||
| + | ca /etc/openvpn/ca.crt | ||
| + | cert /etc/openvpn/worf.xinux.lan.crt | ||
| + | key /etc/openvpn/worf.xinux.lan.key | ||
| + | tun-mtu 1500 | ||
| + | tun-mtu-extra 32 | ||
| + | mssfix 1450 | ||
| + | pull | ||
| + | comp-lzo | ||
verb 3 | verb 3 | ||
</pre> | </pre> | ||
Version vom 12. April 2018, 13:11 Uhr
Serversite
Bridging stuff
- openvpn --mktun --dev tap1
- brctl addbr vmbr1
- brctl addif vmbr1 eth1
- brctl addif vmbr1 tap1
- ifconfig eth1 0.0.0.0 promisc up
- ifconfig tap1 0.0.0.0 promisc up
- ifconfig vmbr1 192.168.56.1 netmask 255.255.255.0 up
Openvpn stuff
- /etc/openvpn/server.conf
dev tap1 daemon tls-server proto udp port 5555 ca /etc/openvpn/ca.crt cert /etc/openvpn/kitan.tuxmen.de.crt key /etc/openvpn/kitan.tuxmen.de.key dh /etc/openvpn/dh4096.pem mssfix persist-key persist-tun log /var/log/openvpn status /var/log/openvpn-status.log verb 4 keepalive 10 120 mute 50 log-append /var/log/openvpn compress lzo verb 3
Clientsite
Bridging stuff
- openvpn --mktun --dev tap1
- brctl addbr vmbr1
- brctl addif vmbr1 eth1
- brctl addif vmbr1 tap1
- ifconfig eth1 0.0.0.0 promisc up
- ifconfig tap1 0.0.0.0 promisc up
- ifconfig vmbr1 0.0.0.0 up
Openvpn stuff
- /etc/openvpn/client.conf
port 5555 daemon dev tap1 remote kitan.tuxmen.de tls-client ca /etc/openvpn/ca.crt cert /etc/openvpn/worf.xinux.lan.crt key /etc/openvpn/worf.xinux.lan.key tun-mtu 1500 tun-mtu-extra 32 mssfix 1450 pull comp-lzo verb 3