To provide additional protection for your VPN server, it is recommended to enable tls-auth. Then you can generate Diffie-Hellman keys (takes a long time): The server.crt file will appear in the issued folder ( C:\Program Files\OpenVPN\easy-rsa\pki\issued\server.crt). Then enter the CA password for your root CA. Sign the request to issue a server certificate using your CA: Key: C:/Program Files/OpenVPN/easy-rsa/pki/private/server.key Req: C:/Program Files/OpenVPN/easy-rsa/pki/reqs/server.req Then generate a certificate request and a key for your OpenVPN server: A Certification Authority key: C :\Program Files\OpenVPN\easy-rsa\pki\private\ca.key.A root certificate of the Certification Authority: C:\Program Files\OpenVPN\easy-rsa\pki\ca.crt.Your newly created PKI dir is: C:/Program Files/OpenVPN/easy-rsa/pkiĮnter a CA password twice: CA creation is complete and you may now import and sign cert requests. I get the same error now for employees.ovpn, and also if I rename either file -pki complete you may now create a CA or requests. On the CLIENT, my /path/to/administrators.ovpn is: administrators On the remote CentOS 7 SERVER, my nf is: port 1194Īlso on the remote SERVER /etc/openvpn/ccd/administrators is: ifconfig-push 10.8.1.1 10.8.1.2 In /path/to/administrators.ovpn:1: administrators (2.3.6) Specifically, when I type openvpn -config /path/to/administrators.ovpn into the CentOS 7 terminal at the CLIENT computer, I get the following error message: Options error: Unrecognized option or missing parameter(s) The problem is that OpenVPN does not seem to like to syntax of my. ovpn file for each instead of using client.ovpn. Towards this end, I created certificates and keys for employees and administrators, and then I created a separate. The two user types are administrators and employees. I am trying to assign different ip address ranges to two different types of users of OpenVPN.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |