Forgive me my denseness. It is late, and I am grown old. I have configured several openvpn v1.x shared key VPN's. Thank you.
I have a need to configure VPN's between offices using BU firewalls and several employees' homes. This appears to be a good application for openvpn server on BU, and openvpn windows clients on the home computers. No? So, I have downloaded the v2.0 LRP's -- thank you. To get a feel for the new architecture, today I have tried to setup gateway-gateway between (2) BU firewalls separated by Internet. I used easyrsa.lrp to generate certificates and keys -- thank you. However -- here is my utter denseness -- I cannot grok the openvpn configuration, nor the BU docs <http://leaf.sourceforge.net/doc/guide/bucu-openvpn.html> ?!?! Perhaps, somebody will please walk me through to a basic connection? I recognize that there is a lot of information that I can provide; but, the v1.x configurations are really very simple. When I achieve a simple connections, then I can embellish it, as required. What follows are details for each side. Yes, I know that the start errors are route-related; but, those `push' and `route' examples, especially in the BU docs, are my greatest source of confusion. Which addresses are to be replaced by real world numbers? What is `vpn_gateway', and why is that NOT in the openvpn.org docs? Please, lead me gently, get me going, and I can figure out the rest ... [A] 24.15.252.147 - trout: BU firewall, external IF (eth0) 192.168.123.0/24 - internal LAN [EMAIL PROTECTED]:~ # svi openvpn start Starting openvpn: client FAILED server RTNETLINK answers: File exists # find /etc/openvpn/ /etc/openvpn/ /etc/openvpn/keys /etc/openvpn/keys/bluetrout-trout.crt /etc/openvpn/keys/index.txt.attr /etc/openvpn/keys/index.txt.attr.old /etc/openvpn/keys/index.txt /etc/openvpn/keys/index.txt.old /etc/openvpn/keys/serial /etc/openvpn/keys/serial.old /etc/openvpn/keys/02.pem /etc/openvpn/keys/trout-bluetrout.crt /etc/openvpn/keys/trout-bluetrout.csr /etc/openvpn/keys/trout-bluetrout.key /etc/openvpn/keys/dh1024.pem /etc/openvpn/keys/01.pem /etc/openvpn/keys/inter.crt /etc/openvpn/keys/inter.csr /etc/openvpn/keys/inter.key /etc/openvpn/keys/ca.crt /etc/openvpn/keys/ca.key /etc/openvpn/client.conf /etc/openvpn/server.conf [B] 64.4.197.65 - bluetrout: BU firewall, external IF (eth0) 192.168.1.0/24 - internal LAN [EMAIL PROTECTED]:~ # svi openvpn start Starting openvpn: server RTNETLINK answers: File exists # find /etc/openvpn/ /etc/openvpn/ /etc/openvpn/keys /etc/openvpn/keys/trout-bluetrout.crt /etc/openvpn/keys/index.txt.attr /etc/openvpn/keys/index.txt.attr.old /etc/openvpn/keys/index.txt /etc/openvpn/keys/index.txt.old /etc/openvpn/keys/serial /etc/openvpn/keys/serial.old /etc/openvpn/keys/02.pem /etc/openvpn/keys/bluetrout-trout.crt /etc/openvpn/keys/bluetrout-trout.csr /etc/openvpn/keys/bluetrout-trout.key /etc/openvpn/keys/bluetrout.crt /etc/openvpn/keys/bluetrout.csr /etc/openvpn/keys/bluetrout.key /etc/openvpn/keys/dh1024.pem /etc/openvpn/keys/01.pem /etc/openvpn/keys/inter.crt /etc/openvpn/keys/inter.csr /etc/openvpn/keys/inter.key /etc/openvpn/keys/ca.crt /etc/openvpn/keys/ca.key /etc/openvpn/server.conf -- Best Regards, mds mds resource 877.596.8237 - Dare to fix things before they break . . . - Our capacity for understanding is inversely proportional to how much we think we know. The more I know, the more I know I don't know . . . --
signature.asc
Description: Digital signature
