Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision Next revisionBoth sides next revision | ||
| docs:guide-user:services:vpn:openconnect:server [2023/03/15 02:22] – [1. Preparation] vgaetera | docs:guide-user:services:vpn:openconnect:server [2023/03/25 10:46] – [2. Key management] vgaetera | ||
|---|---|---|---|
| Line 12: | Line 12: | ||
| ==== 1. Preparation ==== | ==== 1. Preparation ==== | ||
| Install the required packages. | Install the required packages. | ||
| - | Generate client [[docs: | + | Specify |
| - | Specify | + | |
| <code bash> | <code bash> | ||
| Line 25: | Line 24: | ||
| VPN_DNS=" | VPN_DNS=" | ||
| VPN_USER=" | VPN_USER=" | ||
| - | VPN_HASH="$(cat pass.hash)" | + | VPN_PASS="PASSWORD" |
| </ | </ | ||
| - | ==== 2. Firewall ==== | + | ==== 2. Key management ==== |
| + | Generate password hash for VPN client. | ||
| + | |||
| + | <code bash> | ||
| + | # Generate password hash | ||
| + | ocpasswd ${VPN_USER} << EOI | ||
| + | ${VPN_PASS} | ||
| + | ${VPN_PASS} | ||
| + | EOI | ||
| + | VPN_HASH=" | ||
| + | </ | ||
| + | |||
| + | ==== 3. Firewall ==== | ||
| Consider VPN network as private. | Consider VPN network as private. | ||
| Assign VPN interface to LAN zone to minimize firewall setup. | Assign VPN interface to LAN zone to minimize firewall setup. | ||
| Line 50: | Line 61: | ||
| </ | </ | ||
| - | ==== 3. VPN service ==== | + | ==== 4. VPN service ==== |
| Configure VPN service. | Configure VPN service. | ||