We have installed “openVPN” from openSUSE 11.2 repo and “openVPN - webmin module” (GUI).
What it needs to be done … “Road Warriors” need to be able to access websites through openSUSE box sitting in the data center, from remote locations (hotel, coffe shops, wi-fi hot spots,…)
We’re half way there but it gets stucked somewhere with the IP’s :\
I’m not sure how it is done normally but I’ve setup OpenVPN a few times on
different distros just starting with the builds on OpenVPN’s site. From
memory:
Set the service to run automatically.
Configure networks (IP ranges for VPNing, netmasks, routes, etc.)
Configure IP forwarding to be automatic if needed (I think it is)
Configure whether or not VPNing users can see eachother
Configure a set of server keys
Configure a set of keys for each user and allow them on the server side
Distribute user keys to users
Configure firewalls to allow the UDP port where OpenVPN listens
Play
A few of those are optional… mandatory: basically setup the network
side, setup the server keys, setup the client keys, distribute and use.
Good luck.
On 02/22/2010 05:06 AM, erik100 wrote:
>
> Hello,
>
> We have installed “openVPN” from openSUSE 11.2 repo and “openVPN -
> webmin module” (GUI).
>
> What it needs to be done … “Road Warriors” need to be able to access
> websites through openSUSE box sitting in the data center, from remote
> locations (hotel, coffe shops, wi-fi hot spots,…)
>
> We’re half way there but it gets stucked somewhere with the IP’s :
>
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
First of all thank you for your reply. I was hoping someone could post their conf. files (server, client) and point me to the right direction. Someone who is running openVPN on openSUSE 11.2 box.
It’s not that I haven’t learned about the reading you have sugested. I’m confused about firewall, is there only port 1194 that needs to be open, or I need to do something else like firewall-masquerading, or maybe adding “net.ipv4.ip_forward=1” to /etc/sysctl.conf …
Port 1194 UDP needs to be allowed at the firewall, and if the VPN server is not the gateway, any port forwarding at the firewall added. But openvpn works best when it’s installed on the firewall/gateway machine because of the issue of setting the gateway for VPN traffic for clients without too much pain.
I have configured “server.conf” and “client.conf”. When I’m trying to connect to server from remote location, I get this notification “Options error: --http-proxy MUST be used in TCP Client mode (i.e. --proto tcp-client)
Use --help for more information.”