OPENVPN Linux Client: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
(→Client) |
|||
| Zeile 1: | Zeile 1: | ||
| + | =Installation= | ||
| + | *apt install -y openvpn | ||
=Client= | =Client= | ||
| + | |||
=Client Config= | =Client Config= | ||
Version vom 22. April 2025, 17:24 Uhr
Installation
- apt install -y openvpn
Client
Client Config
- vim client.ovpn
dev tun0 remote 192.168.hs.1xx tls-client cipher AES-256-CBC link-mtu 1542 mssfix 1450 pull verb 3 auth-user-pass <ca> -----BEGIN CERTIFICATE----- MIIFAzCCAuugAwIBAgIUMOKKEBoHcll+DmUng5SXXBUXtjYwDQYJKoZIhvcNAQEL BQAwETEPMA0GA1UEAwwGdnBuLWNhMB4XDTIyMDkwNjE5MTc0OVoXDTMyMDkwMzE5 MTc0OVowETEPMA0GA1UEAwwGdnBuLWNhMIICIjANBgkqhkiG9w0BAQEFAAOCAg8A MIICCgKCAgEA4jYvoSfe/Duv/GMbBSSuATna0HLEpcxY9yfndszag3LGIgKi6Q9G gchcXW7pEtXJube4V3BsAxm0NewAYoUx1YN/xTpzguDPVNb/7rv/ucJEM5+DGR+H 4glU7f27AoAWVuNrLC08ua+djbgjiFWKfN1yhSM1aoKJor5XfFOvjp7BXQ8SB9VD wLGDwSQkoOE8h8WZztwqTHMbh7aMYAvAgI320Ot8h+MPDK6Qbe/sQormeuVoe2NZ OkbRDU2wBg+18jXJ2TOh3X40ViVHjhNDMxVN+kqoHEIVSY2RkeBo71MOgqQIPwj5 VML/cdOR0ryiiuhdN9nUEQX6e9rGtMqeRM1BHTXOEC3LQVQRYvO63M0QeZyrQxIM 9FCrEG7cwFMjephvnfh8g6CKIJSf9b/XcwTfp5MmsbeJ2reKeOjevZeVZDb3pPJa MozgIUzbu3+Jz7s12inqqNd/kVLL5gSl+zS1WWODJJQuRL9hJbbI00laIJrpZXze 8jGlzkyli+c4DCJxHCIC2flcItCaCClWjyUkDvCypR6zCx5P1UoqMKHrnhoglTN8 /SMOoVMuH6QIVBfRK+qo2z+Jo7A002gX3sx6h4cFRdOTOxJb/X+F/u5UOYCNltyr iVb6hwSPptGqLc1n98OGTmRKGuV7S4iDicLS1D/23SW1E4exO8VKkacCAwEAAaNT MFEwHQYDVR0OBBYEFLn1VC0L2vweOFNZkB/nJpi7OaV4MB8GA1UdIwQYMBaAFLn1 VC0L2vweOFNZkB/nJpi7OaV4MA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQEL BQADggIBAARtLwr59j4vyZSvpuPJfkkrnHkTZ9OGceIL4VIOX2rHDwVH4UKsAY+s V/+gl08Qmua3C/3Rv+Q+r+wRVTb/V4cwbppClM/r4b/rA4SEz0n3GYl3GnX2022N LCFAvd1CCljZRpPNGBXtFEuEajfx3J0G7sqNS1yCJmLbjKq9dFDnVYZ38P01GiJN FhEo0qET9R2m29XNnOTaavlA6fjuSZFPDFGFNdWN+gQaxybl6WRNNSWfqbuJict/ +iZSeMJh6l6Dgqp2xHJYKC6NZ1jLjxvnKmmyVg+KxPPKPxT0TZOyZ48eRr6AM3vH Uh/pEe/O2QRvEbZQ8FasUnp0RndvpW5i27QDp+1zgcABtvjMLG8urMN3YpRR4Ja0 U4gPRWx23RJQYo25OxqQOR3L4X4wCsEHM7ubRWtPhrS0UYLgelrKvm0dyLHbx2FB nhI6kKGB1MkLDgrAsSv5B7IL7sE0l+FjJc1inV8hFu9iQQA9jKow7VbCVyBOx5rj 13mJmiaMvDdZjrEQwBpNUqZuQlZeuJuYvBbkPrLGO97NurXmUsntfwl6wpjU1u8z gL9iH4ZnmDlwWsB2YVH/Kf0+vcwFXBvAJpf+lHplyTYjMvD5cs03xtBMviek0kq1 lRJ6jYOQkygEdYEsqzlZRRs+/gL2+ldQb882BDkWHYoJOC62Wvtn -----END CERTIFICATE----- </ca>
Verbinden
- sudo openvpn --config client.ovpn
Wed Sep 7 11:33:59 2022 OpenVPN 2.4.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Mar 22 2022 Wed Sep 7 11:33:59 2022 library versions: OpenSSL 1.1.1f 31 Mar 2020, LZO 2.10 Enter Auth Username: xinux Enter Auth Password: ********* ... Wed Sep 7 11:34:09 2022 TUN/TAP TX queue length set to 100 Wed Sep 7 11:34:09 2022 /sbin/ip link set dev tun0 up mtu 1489 Wed Sep 7 11:34:09 2022 /sbin/ip addr add dev tun0 172.31.2.2/24 broadcast 172.31.2.255 Wed Sep 7 11:34:09 2022 /sbin/ip route add 10.82.228.0/24 via 172.31.2.1 Wed Sep 7 11:34:09 2022 Initialization Sequence Completed
Tests
- ip address show tun0
19: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1489 qdisc fq_codel state UNKNOWN group default qlen 100
link/none
inet 172.31.2.2/24 brd 172.31.2.255 scope global tun0
valid_lft forever preferred_lft forever
inet6 fe80::48a3:6720:8a6c:a4d6/64 scope link stable-privacy
valid_lft forever preferred_lft forever
- ip route show | grep tun0
10.82.228.0/24 via 172.31.2.1 dev tun0
172.31.2.0/24 dev tun0 proto kernel scope link src 172.31.2.2
- ping -c 1 10.82.228.11
PING 10.82.228.11 (10.82.228.11) 56(84) bytes of data. 64 bytes from 10.82.228.11: icmp_seq=1 ttl=63 time=30.8 ms