[fli4l] [openvpn] mit Zertifikaten
Matthias Taube
no_html.max50kb at nurfuerspam.de
Sa Apr 15 20:31:29 CEST 2017
Am 14.04.2017 um 22:32 schrieb Marc-Oliver Lange:
> Wie hast Du denn die Zertifikate mit eingebunden?
> VG
> Marco
Auszug:
> #------------------------------------------------------------------------------
> # OPT_OPENVPN - configure an openvpn tunnel.
> #------------------------------------------------------------------------------
> OPT_OPENVPN='yes'
> OPENVPN_EXPERT='no'
> OPENVPN_WEBGUI='yes'
> OPENVPN_DEFAULT_CIPHER='BF-CBC'
> OPENVPN_DEFAULT_DIGEST='SHA256'
> OPENVPN_N='2'
...
> OPENVPN_2_NAME='odin-udp'
> OPENVPN_2_LOCAL_PORT='10041'
> OPENVPN_2_PROTOCOL='udp'
> OPENVPN_2_SECRET='vpn_fli_odin_udp.key'
> OPENVPN_2_TYPE='tunnel'
> OPENVPN_2_REMOTE_VPN_IP='192.168.200.236'
> OPENVPN_2_LOCAL_VPN_IP='192.168.200.235'
> OPENVPN_2_ROUTE_N='0'
> OPENVPN_2_PF_FORWARD_N='4'
> OPENVPN_2_PF_FORWARD_1='if:VPNDEV:any tmpl:ssh ACCEPT'
> OPENVPN_2_PF_FORWARD_2='if:VPNDEV:any tmpl:nfs ACCEPT'
> OPENVPN_2_PF_FORWARD_3='if:VPNDEV:any tmpl:samba ACCEPT'
> OPENVPN_2_PF_FORWARD_4='if:VPNDEV:any tmpl:smtp ACCEPT'
...
> PF_PREROUTING[]='prot:udp dynamic:443 DNAT:169.254.23.42:10041'
> PF_PREROUTING[]='prot:udp 192.168.27.1:10046 DNAT:169.254.23.42:10041'
Mehr Informationen über die Mailingliste Fli4L