RADIUSdesk

Trace: openvpn_bridges_prep_radiusdesk

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision		Previous revision
user_guide:openvpn_bridges_prep_openvpn [2016/09/26 06:03] – created adminuser_guide:openvpn_bridges_prep_openvpn [2020/08/12 14:16] (current) – [Prepare OpenVPN] admin
Line 1: Line 1:
-====== OpenVPN Bridges =Prepare OpenVPN ======+====== OpenVPN Bridges ====== 
 +===== Prepare OpenVPN =====
   * Rather than repeating the already excellent documentationf from Ubuntu, we are just going to give you the URL with the instructions to follow in order to get a OpenVPN server installed and configured.   * Rather than repeating the already excellent documentationf from Ubuntu, we are just going to give you the URL with the instructions to follow in order to get a OpenVPN server installed and configured.
-  * [[https://help.ubuntu.com/14.04/serverguide/openvpn.html|Install OpenVPN on Ubuntu 14.04]]+  * [[https://help.ubuntu.com/18.04/serverguide/openvpn.html|Install OpenVPN on Ubuntu 18.04]]
   * You can complete the steps up to and including **Simple Server Configuration**.   * You can complete the steps up to and including **Simple Server Configuration**.
-  * After this we will change the remove the **/etc/openvpn/server.conf** file and replace it with the following three files.+  * After this we will remove the **/etc/openvpn/server.conf** file and replace it with the following three files.
   * Please adapt to your server, especially the value of **local** to reflect the public IP Address of your server.   * Please adapt to your server, especially the value of **local** to reflect the public IP Address of your server.
   * We are going to use OpenVPN configured as follows:   * We are going to use OpenVPN configured as follows:
Line 10: Line 11:
     * We are compressing the data     * We are compressing the data
     * We are using a username and password given by the client and pass it onto a script to verify if the client is valid.      * We are using a username and password given by the client and pass it onto a script to verify if the client is valid. 
 +  * Remove /etc/openvpn/server.conf
 +<code bash>
 +sudo rm /etc/openvpn/server.conf
 +</code>
  
 ----------------- -----------------
Line 15: Line 20:
 ===== OpenVPN server config for br0.101 ===== ===== OpenVPN server config for br0.101 =====
   * Create a file called **/etc/openvpn/server_vlan_101.conf**.   * Create a file called **/etc/openvpn/server_vlan_101.conf**.
 +  * Be sure to check the correct value for eth0.101. It might be eth1.101 with your config. (up "/etc/openvpn/up.sh br0.101 eth1.101")
 <code bash> <code bash>
 mode server mode server
Line 55: Line 61:
 ===== OpenVPN server config for br0.102 ===== ===== OpenVPN server config for br0.102 =====
   * Create a file called **/etc/openvpn/server_vlan_102.conf**.   * Create a file called **/etc/openvpn/server_vlan_102.conf**.
 +  * Be sure to check the correct value for eth0.102. It might be eth1.102 with your config. (up "/etc/openvpn/up.sh br0.102 eth1.102")
 <code bash> <code bash>
 mode server mode server
Line 95: Line 102:
 ===== OpenVPN server config for br0.103 ===== ===== OpenVPN server config for br0.103 =====
   * Create a file called **/etc/openvpn/server_vlan_103.conf**.   * Create a file called **/etc/openvpn/server_vlan_103.conf**.
 +  * Be sure to check the correct value for eth0.103. It might be eth1.103 with your config. (up "/etc/openvpn/up.sh br0.103 eth1.103")
 <code bash> <code bash>
 mode server mode server
Line 156: Line 164:
   * Make it executable   * Make it executable
 <code bash> <code bash>
-sudo chmod 755 etc/openvpn/up.sh+sudo chmod 755 /etc/openvpn/up.sh
 </code> </code>
  
Line 192: Line 200:
  
 ===== Check the bridges ===== ===== Check the bridges =====
-  * The bridges should now each have a tap interfaces in the mix:+  * Confirm that the bridges each have a tap interface included:
 <code bash> <code bash>
 brctl show brctl show
Line 231: Line 239:
  
 </code> </code>
 +
 +<WRAP center round tip 90%>
 +  * If your server  has only **one** interface card, be sure to add the following line to the **/etc/rc.local** file to ensure OpenVPN is only started up after the bridges have been set up
 +
 +<code bash>
 +/sbin/brctl addif br0.103 eth1.103
 +/sbin/ip addr add 10.103.0.1/16 dev br0.103
 +/sbin/ip link set dev br0.103 up
 +
 +#Add the startup of OpenVPN
 +/usr/sbin/service openvpn start
 +
 +exit 0
 +
 +</code>
 +
 +</WRAP>
 +
  
   * We are making good progress. Next we will install and configure **Coova Chilli** so that it runs an instance on each VLAN.   * We are making good progress. Next we will install and configure **Coova Chilli** so that it runs an instance on each VLAN.
Last modified: 2016/09/26 06:03