Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision Next revisionBoth sides next revision | ||
| docs:guide-user:services:vpn:openvpn:server [2023/07/21 06:39] – [2. Key management] pavelgl | docs:guide-user:services:vpn:openvpn:server [2023/10/14 05:14] – use service invocation vgaetera | ||
|---|---|---|---|
| Line 62: | Line 62: | ||
| easyrsa gen-dh | easyrsa gen-dh | ||
| - | # Create a new CA changing commonName if needed | + | # Create a new CA |
| - | easyrsa | + | easyrsa build-ca nopass |
| # Generate server keys and certificate | # Generate server keys and certificate | ||
| - | easyrsa | + | easyrsa |
| - | easyrsa sign-req server | + | |
| openvpn --genkey tls-crypt-v2-server ${EASYRSA_PKI}/ | openvpn --genkey tls-crypt-v2-server ${EASYRSA_PKI}/ | ||
| # Generate client keys and certificate | # Generate client keys and certificate | ||
| - | easyrsa | + | easyrsa |
| - | easyrsa sign-req client | + | |
| openvpn --tls-crypt-v2 ${EASYRSA_PKI}/ | openvpn --tls-crypt-v2 ${EASYRSA_PKI}/ | ||
| --genkey tls-crypt-v2-client ${EASYRSA_PKI}/ | --genkey tls-crypt-v2-client ${EASYRSA_PKI}/ | ||
| Line 96: | Line 94: | ||
| uci set firewall.ovpn.target=" | uci set firewall.ovpn.target=" | ||
| uci commit firewall | uci commit firewall | ||
| - | / | + | service |
| </ | </ | ||
| Line 167: | Line 165: | ||
| EOF | EOF | ||
| done | done | ||
| - | / | + | service |
| ls ${VPN_DIR}/ | ls ${VPN_DIR}/ | ||
| </ | </ | ||
| Line 188: | Line 186: | ||
| <code bash> | <code bash> | ||
| # Restart services | # Restart services | ||
| - | / | + | service |
| # Log and status | # Log and status | ||