48 lines
713 B
Markdown
48 lines
713 B
Markdown
# 1. Init RSA
|
|
```shell
|
|
cd /usr/share/easy-rsa
|
|
./easyrsa clean-all
|
|
./easyrsa init-pki
|
|
./easyrsa build-ca nopass
|
|
./easyrsa build-server-full server nopass
|
|
./easyrsa gen-dh
|
|
```
|
|
|
|
# 2. Create user certs
|
|
```shell
|
|
cd /usr/share/easy-rsa
|
|
./easyrsa build-client-full USERNAME nopass
|
|
```
|
|
|
|
# 3. Configure server
|
|
Preconfigured example is here:
|
|
```shell
|
|
nano /data/openvpn.conf
|
|
```
|
|
|
|
# 4. Enable routing protocols
|
|
```shell
|
|
nano /data/frr/daemons
|
|
```
|
|
|
|
# 5. Enable services autostart
|
|
```shell
|
|
rc-update add frr
|
|
rc-update add openvpn
|
|
```
|
|
|
|
# 6. Start services
|
|
```shell
|
|
rc-service frr start
|
|
rc-service openvpn start
|
|
```
|
|
|
|
# 7. Configure router
|
|
```shell
|
|
vtysh
|
|
```
|
|
|
|
# 8. Get client config file
|
|
```shell
|
|
build-client-config USERNAME
|
|
``` |