centos系統安裝openvpn

2017-10-10 16:52:12

轉自linuxzone http://www.linuxzone.net/server/93.html

系統：CentOS

openvpn server ip:172.16.1.2

[root@localhost ~]#yum -y install openssl-devel

[root@localhost ~]#tar xvf lzo-2.02.tar.gz

[root@localhost ~]#cd lzo-2.02

[root@localhost ~]#./configure

[root@localhost ~]#make

[root@localhost ~]#make install

[root@localhost ~]#cd /root

[root@localhost ~]#tar xvf openvpn-2.0.9.tar.gz

[root@localhost ~]#cd openvpn-2.0.9

[root@localhost ~]#./configure --prefix=/usr/local/openvpn

[root@localhost ~]#mkdir /etc/openvpn

[root@localhost ~]#cd /root/openvpn-2.0.9

[root@localhost ~]#cp sample-config-files/server.conf /etc/openvpn

[root@localhost ~]#cp -a easy-rsa/ /etc/openvpn/

[root@localhost ~]#cd /etc/openvpn/easy-rsa/2.0

[root@localhost ~]#vim vars

export KEY_COUNTRY="CN"

export KEY_PROVINCE="CA"

export KEY_CITY="SZ"

export KEY_ORG="Company"

export KEY_EMAIL="[email protected]"

[root@localhost ~]#. vars

[root@localhost ~]#./clean-all

[root@localhost ~]#./build-ca

[root@localhost ~]#./build-key-server server

[root@localhost ~]#./build-key test

[root@localhost ~]#./build-dh

[root@localhost ~]#vim /etc/openvpn/server.conf

[root@localhost ~]#cat /etc/openvpn/server.conf | grep -v "^#" | grep -v "^;"

local 172.16.1.2

port 1194

proto tcp

dev tun

ca /etc/openvpn/easy-rsa/2.0/keys/ca.crt

cert /etc/openvpn/easy-rsa/2.0/keys/server.crt

key /etc/openvpn/easy-rsa/2.0/keys/server.key # This file should be kept secret

dh /etc/openvpn/easy-rsa/2.0/keys/dh1024.pem

server 172.16.88.0 255.255.255.0

ifconfig-pool-persist ipp.txt

push "route 172.16.1.0 255.255.255.0" 重要有這條才能通路172.16.1.0網段

push "dhcp-option DNS 192.168.1.2"

keepalive 10 120

comp-lzo

persist-key

persist-tun

status openvpn-status.log

log /var/log/openvpn.log

verb 3

[root@localhost ~]#echo 1 >/proc/sys/net/ipv4/ip_forward

[root@localhost ~]#iptables –t nat –A POSTROUTING –s 172.16.88.0/24 -J SNAT --to 172.16.1.2

[root@localhost ~]#/usr/local/openvpn/sbin/openvpn --config /etc/openvpn/server.conf

在windows用戶端安裝openvpn-2.0.9-gui

用戶端配置檔案：

client

remote172.16.1.21194

resolv-retry infinite

nobind

ca e://keys//ca.crt

cert e://keys//test.crt

key e://keys//test.key

完成！

centos系統安裝openvpn

繼續閱讀

一分鐘修改好Linux中root密碼Linux修改root密碼

hualinux1.20 基礎：sendEmail安裝及郵件發送

Docker - Dockerfile之ADD、COPY、WORKDIR、USER、EXPOSE指令詳解

Centos7 下 Hadoop 2.6.4 分布式叢集環境搭建摘要叢集準備安裝JDK 安裝 Hadoop 2.6.4 部署 slaver1-slaver4 啟動 hadoop 叢集成功了

supervisor 管理redis 和httpd 環境centos7

Centos7 MySQL 5.7 安裝MySQL 5.7 安裝

Centos 7 Apache配置虛拟主機

在Centos中将apache httpd 服務加入系統服務

CentOS 6.5 部署 Apache 伺服器(httpd)

【CentOS】httpd子產品 Job for httpd.service failed because the control process exited with error c項目場景：問題描述：原因分析：解決步驟：

伺服器配置——Apache

centOS7 配置 vsftpd 虛拟使用者及權限Vsftpd配置虛拟使用者及權限

linux-svn解除安裝與安裝

vsftp虛拟多使用者多權限一鍵部署腳本

Shell程式設計——sort排序、uniq忽略重複、tr替換壓縮删除、cut指定删除字段、正規表達式元字元sort 指令uniq 指令tr 指令cut 指令正規表達式

配置網頁内容通路