On 24/02/16 16:24, tovis wrote: > Thanks for your answer! > On this (old 12.0.9 OpenWrt) /etc/config/openvpn contain only an include > to real configuration file /etc/openvpn/srv-vpn.conf > I this directory are also keys (such as ca.crt, ca.key, server.crt etc.) > Location of ccd is now /etc/openvpn/ccd/tovis-lak and server (seem to me) > could recognize it: > VERIFY OK: depth=0, > /C=HU/ST=Budapest/L=Budapest/O=tovis-lak/OU=houskeeping/CN=tovis-lak/name=tovis/emailAddress= > > But I can not find that message, what you so kindly share with me :) > Anyway I will try to copy it, to /etc/config/ > >> vpn is for a secure tunnel, not just to go around nat :). > May be it is unusual, but at now I don not care about security (in OpenWrt > repository there is a package which use no encryption - if I understand it > well). > OFF: Initially I planned to use reverse ssh tunnel(s) but in our forum > someone suggest me to use vpn - more flexible and straight forward > solution. I do not thought that it will so hard to setup for me. I'm > absolute new be using vpn. > > a very easy method to check whether a CCD file is picked up is to add --ccd-exclusive to the server config and reconnect the client . If the server cannot find a valid CCD file the client will be denied access.
HTH, JJK ------------------------------------------------------------------------------ Site24x7 APM Insight: Get Deep Visibility into Application Performance APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month Monitor end-to-end web transactions and take corrective actions now Troubleshoot faster and improve end-user experience. Signup Now! http://pubads.g.doubleclick.net/gampad/clk?id=272487151&iu=/4140 _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
