Hi,
> I was just wondering if anyone is actively using site to site VPN's with
> eBox systems at both ends for the firewall/routers? If you have this
> working could you please share your configuration and anything special you
> did to get it working?
I've just tested this with two eBox running 0.11.9 and it worked fine.
Let's do a quick review of the steps I followed to see if there's any
discrepancy:
eBox A:
- You will need to initialise your Certificate Authority and create
certificates for your server and client
- You will need an openVPN server
- Tick "allow eBox-to-eBox tunnels" in its configuration
- Make sure the openVPN server is active and the general openVPN
service is
enabled
- Download a client bundle clicking on the down-arrow in the main
openVPN
page (Actions column). Select Linux.
- Save changes and you will be done with eBox A
eBox B:
- Uncompress the bundle file you have downloaded from eBox A in your
desktop
machine as you will need to upload some files.
- Go to openVPN, create a new client
- Set a client name
- Active the openVPN
- Set the public IP of eBox A and its port (make sure you have set
the proper redirections in your external router to reach eBox from the
Internet)
- Upload the file cacert.pem which was within the bundle to CA's
certificate
- Upload the file xxxx.pem where xxx is the name of the certificate
assigned
by you to Client's certificate
- Upload the file xxx.pem where xxx are hex numbers to Client's private
key
- Click on create
- Make sure the general openVPN service is enabled
- Save changes
Some notes:
Pay attention to the IPs used in both networks, they can't clash, so pick
different networks.
_______________________________________________
Ebox-user mailing list
[email protected]
https://lists.warp.es/mailman/listinfo/ebox-user
