Если вы видите что-то необычное, просто сообщите мне. Skip to main content

Установка openvpn(шаблончик превратить в скрипт)

mkdir -p /etc/openvpn/easy-rsa/keys
sudo su
sudo mkdir /etc/openvpn/easy-rsa
rm /etc/openvpn/easy-rsa/ -r
sudo rm /etc/openvpn/easy-rsa/ -r
sudo mkdir /etc/openvpn/easy-rsa
sudo ./easyrsa init-pki
sudo ./easyrsa build-ca
sudo ./easyrsa gen-dh
sudo openvpn --genkey --secret /etc/easy-rsa/pki/ta.key
sudo openvpn --genkey --secret /etc/openvpn/pki/ta.key
sudo openvpn --genkey --secret /etc/openvpn/easy-rsa/pki/ta.key
sudo ./easyrsa gen-crl
sudo ./easyrsa build-server-full server nopass
cp ./pki/ca.crt /etc/openvpn/ca.crt
sudo cp ./pki/ca.crt /etc/openvpn/ca.crt
sudo cp ./pki/dh.pem /etc/openvpn/dh.pem
sudo cp ./pki/crl.pem /etc/openvpn/crl.pem
sudo cp ./pki/ta.key /etc/openvpn/ta.key
sudo cp ./pki/issued/server.crt /etc/openvpn/server.crt
sudo cp ./pki/private/server.key /etc/openvpn/server.key
ls
sudo vim /etc/openvpn/server.conf
sudo openvpn /etc/openvpn/server.conf
ls
cd ..
ls
sudo openvpn /etc/openvpn/server.conf
sudo systemctl start openvpn@server
sysctl -w net.ipv4.ip_forward=1
sudo sysctl -w net.ipv4.ip_forward=1
ip -br a
ip a s
sudo iptables -I FORWARD -i tun0 -o eth0 -j ACCEPT
sudo iptables -I FORWARD -i eth0 -o tun0 -j ACCEPT
sudo iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
sudo ./easyrsa build-client-full losst nopass
cd easy-rsa/
sudo ./easyrsa build-client-full losst nopass
sudo mkdir /etc/openvpn/clients
udo mkdir /etc/openvpn/clients/losst
cd /etc/openvpn/clients/losst
sudo cp /etc/openvpn/easy-rsa/pki/ca.crt /etc/openvpn/clients/losst/
sudo mkdir /etc/openvpn/clients/losst
cd /etc/openvpn/clients/losst
sudo cp /etc/openvpn/easy-rsa/pki/ca.crt /etc/openvpn/clients/losst/
sudo cp /etc/openvpn/easy-rsa/pki/ta.key /etc/openvpn/clients/losst/
sudo cp /etc/openvpn/easy-rsa/pki/issued/losst.crt /etc/openvpn/clients/losst/
sudo cp /etc/openvpn/easy-rsa/pki/private/losst.key /etc/openvpn/clients/losst/
sudo cp /usr/share/doc/openvpn/examples/sample-config-files/client.conf ./losst.conf
ip -br a
sudo vi ./losst.conf
cat losst.
cat losst.crt 
sudo cat losst.crt 
cat /etc/openvpn/clients/losst/losst.conf 
ls
cat losst.conf 
cat ca.crt 
sudo cat ca.crt 
cat losst.key 
sudo cat losst.key 
sudo cat ta.key 
ls
cat ca.crt 
sudo cat ca.crt 
sudo cat losst.key 
sudo cat ta.key 
ls
sudo cat losst.crt
ip br -a
ip -br a
Back to top