Differences

This shows you the differences between two versions of the page.

--- technical:openvpn-bridges-prep-openvpn [2023/10/21 06:08]
admin [Test ifconfig]
+++ technical:openvpn-bridges-prep-openvpn [2024/01/11 13:24] (current)
admin [OpenVPN server config for br0.103]
@@ Line 9: / Line 9: @@
         * We are not going to use encryption of the tunnel.
         * We are not going to use the PKI.
-        * We are compressing the data.
+        * We are not compressing the data.
         * We are using a username and password given by the client and pass it onto a script to verify if the client is valid.
   * Remove /etc/openvpn/server.conf
@@ Line 17: / Line 17: @@
 ===== OpenVPN server config for br0.101 =====
   * Create a file called **/etc/openvpn/server_vlan_101.conf**.
-  * Be sure to check the correct value for eth0.101. It might be eth1.101 with your config. (up “/etc/openvpn/up.sh br0.101 eth1.101”)
+  * Be sure to check the correct value for eth1.101. It might be eth0.101 with your config. (up “/etc/openvpn/up.sh br0.101 eth0.101”)
 <file bash server_vlan_101.conf>
 mode server
 auth none
-cipher none
 tmp-dir /dev/shm
 auth-user-pass-verify "/etc/openvpn/openvpn_auth.pl" via-file
 verify-client-cert none
 username-as-common-name
 script-security 2
-local 198.27.111.78
+local 178.1.1.20
 port 1194
 proto udp
@@ Line 39: / Line 38: @@
 key server.key  # This file should be kept secret
 dh dh.pem
-up "/etc/openvpn/up.sh br0.101 eth0.101"
+up "/etc/openvpn/up.sh br0.101 eth1.101"
 server-bridge 10.101.0.1 255.255.0.0 10.101.0.2 10.101.0.100
 ifconfig-pool-persist ipp.txt
 ;client-config-dir ccd
 keepalive 10 120
-comp-lzo
 persist-key
 persist-tun
 status openvpn-status.log
 verb 4
+allow-compression no
+data-ciphers none
+cipher none
 </file>
@@ Line 60: / Line 61: @@
 auth none
-cipher none
 tmp-dir /dev/shm
@@ Line 69: / Line 69: @@
 script-security 2
-local 198.27.111.78
+local 178.1.1.20
 port 1195
 proto udp
@@ Line 78: / Line 78: @@
 dh dh.pem
-up "/etc/openvpn/up.sh br0.102 eth0.102"
+up "/etc/openvpn/up.sh br0.102 eth1.102"
 server-bridge 10.102.0.1 255.255.0.0 10.102.0.2 10.102.0.100
@@ Line 84: / Line 84: @@
 ;client-config-dir ccd
 keepalive 10 120
-comp-lzo
 persist-key
 persist-tun
 status openvpn-status.log
 verb 4
+allow-compression no
+data-ciphers none
+cipher none
 </file>
@@ Line 98: / Line 100: @@
 auth none
-cipher none
 tmp-dir /dev/shm
@@ Line 107: / Line 108: @@
 script-security 2
-local 198.27.111.78
+local 178.1.1.20
 port 1196
 proto udp
@@ Line 116: / Line 117: @@
 dh dh.pem
-up "/etc/openvpn/up.sh br0.103 eth0.103"
+up "/etc/openvpn/up.sh br0.103 eth1.103"
 server-bridge 10.103.0.1 255.255.0.0 10.103.0.2 10.103.0.100
@@ Line 122: / Line 123: @@
 ;client-config-dir ccd
 keepalive 10 120
-comp-lzo
 persist-key
 persist-tun
 status openvpn-status.log
 verb 4
+allow-compression no
+data-ciphers none
+cipher none
 </file>
 ===== Prepare /etc/openvpn/up.sh =====
@@ Line 167: / Line 170: @@
 sudo chmod 755 /etc/openvpn/openvpn_auth.pl
 </code>
-  * Make sure the Perl modules that are used by this script is installed.
+  * Make sure the Perl modules that are used by this script are installed.
 <code bash>
 sudo apt-get install liblwp-protocol-https-perl

RADIUSdesk

Page Tools

Site Tools

User Tools

Differences