I'm somewhat new to Linux, and completely new to OpenVPN. But here is my situation, I have OpenVPN Installed on my server runing Ubuntu 7.10. I also have wandered through tutorials and have it runing to the point where I can connect to it.
server.conf
Expand|Select|Wrap|Line Numbers
- local 10.0.0.242
- port 1194
- ;proto tcp
- proto udp
- ;dev tap
- dev tun0
- ;dev-node MyTap
- ca ca.crt
- cert server.crt
- key server.key # This file should be kept secret
- dh dh1024.pem
- server 10.10.10.0 255.255.255.0
- ;ifconfig-pool 10.10.10.10 10.10.10.30
- ifconfig-pool-persist ipp.txt 0
- ;server-bridge 10.8.0.4 255.255.255.0 10.8.0.50 10.8.0.100
- push "route 10.0.0.0 255.255.255.0"
- ;push "route 10.10.10.0 255.255.255.0"
- ;client-config-dir ccd
- ;route 192.168.40.128 255.255.255.248
- ;client-config-dir ccd
- ;route 10.9.0.0 255.255.255.252
- ;learn-address ./script
- ;push "redirect-gateway"
- ;push "dhcp-option DNS 10.10.10.1"
- ;push "dhcp-option WINS 10.8.0.1"
- client-to-client
- duplicate-cn
- keepalive 10 120
- ;tls-auth ta.key 0 # This file is secret
- ;cipher BF-CBC # Blowfish (default)
- ;cipher AES-128-CBC # AES
- ;cipher DES-EDE3-CBC # Triple-DES
- comp-lzo
- ;max-clients 100
- ;user nobody
- ;group nobody
- persist-key
- persist-tun
- status openvpn-status.log
- ;log openvpn.log
- ;log-append openvpn.log
- verb 3
- ;mute 20
Expand|Select|Wrap|Line Numbers
- root@administrator-desktop:/etc/openvpn# route -n
- Kernel IP routing table
- Destination Gateway Genmask Flags Metric Ref Use Iface
- 10.10.10.2 0.0.0.0 255.255.255.255 UH 0 0 0 tun0
- 10.0.0.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
- 10.10.10.0 10.10.10.2 255.255.255.0 UG 0 0 0 tun0
- 169.254.0.0 0.0.0.0 255.255.0.0 U 1000 0 0 eth0
- 0.0.0.0 10.0.0.250 0.0.0.0 UG 100 0 0 eth0
Expand|Select|Wrap|Line Numbers
- | 10.0.0.250/24 | ------ Server 2000
- |
- |
- |
- | 10.0.0.242/24 | ------ Ubuntu 7.10
- \
- \______10.10.10.x\24
- (vpn dhcp pool)
Expand|Select|Wrap|Line Numbers
- client
- ;dev tap
- dev tun
- ;dev-node MyTap
- ;proto tcp
- proto udp
- remote 10.0.0.242
- ;remote my-server-2 1194
- ;remote-random
- resolv-retry infinite
- nobind
- ;user nobody
- ;group nobody
- persist-key
- persist-tun
- ;http-proxy-retry # retry on connection failures
- ;http-proxy [proxy server] [proxy port #]
- ;mute-replay-warnings
- ca ca.crt
- cert client1.crt
- key client1.key
- ;ns-cert-type server
- ;tls-auth ta.key 1
- ;cipher x
- comp-lzo
- verb 3
- ;mute 20
Thanks for any help,
Scotter