Differences

This shows you the differences between two versions of the page.

--- edgerouter:openvpn-roadwarrior [2017/09/18 15:28] – created brielle
+++ edgerouter:openvpn-roadwarrior [2017/09/18 15:35] – brielle
@@ Line 1: / Line 1: @@
 ====== EdgeRouter + OpenVPN Road Warrior Example ======
+===== Generate Certificates With EasyRSA 3 =====
+You'll need to generate server, client, and DH certificates using the instructions [[https://community.openvpn.net/openvpn/wiki/EasyRSA3-OpenVPN-Howto|here]].
+Once you do that, copy the server certs (ca.crt, server.crt, dh.pem, and server.key) to:
+<code>/config/auth/openvpn/</code>
+On the EdgeRouter.
+Also generate some client certs either now or later.  You'll need them to put the contents inside of the client ovpn file.
+===== EdgeRouter Configuration =====
 On the EdgeRouter, make changes where appropriate...
 <code>set interfaces openvpn vtun0 firewall in name OpenVPN-Mobile
@@ Line 20: / Line 32: @@
 set interfaces openvpn vtun0 tls dh-file /config/auth/openvpn/dh.pem
 set interfaces openvpn vtun0 tls key-file /config/auth/openvpn/server.key
+</code>
+===== OpenVPN .ovpn Config File For Clients =====
+<code>
+client
+tls-client
+remote remote.hostname.here
+port xxxx
+proto udp
+dev tun
+pull
+cipher AES-128-CBC
+auth SHA256
+fragment 1400
+mssfix
+float
+<ca>
+ca certificate file contents here
+</ca>
+<cert>
+pem certificate file contents here
+</cert>
+<key>
+pem key file contents here
+</key>
 </code>

The Summit Open Source Development Group