sudo apt-get update && apt-get upgrade
sudo apt-get install openvpn easy-rsa
sudo cp /usr/share/doc/openvpn/examples/sample-config-files/server.conf.gz /etc/openvpn/
sudo gzip -d /etc/openvpn/server.conf.gz
- ./build-ca
- ./build-key-server server
- ./build-dh
- openvpn --genkey --secret keys/ta.key
#!/bin/bash
# Generate OpenVPN clients configuration files.
CLIENT_NAME=$1
OPENVPN_SERVER="sanvpn.freeddns.org"
CA_DIR=/etc/openvpn/easy-rsa
CLIENT_DIR=/etc/openvpn/client
cd ${CA_DIR}
source vars
./build-key ${CLIENT_NAME}
echo "client
dev tun
proto udp
remote ${OPENVPN_SERVER} 1194
user nobody
group nogroup
persist-key
persist-tun
cipher AES-128-CBC
auth SHA256
key-direction 1
remote-cert-tls server
comp-lzo
verb 3" > ${CLIENT_DIR}/${CLIENT_NAME}.ovpn
cat <(echo -e '<ca>') \
${CA_DIR}/keys/ca.crt \
<(echo -e '</ca>\n<cert>') \
${CA_DIR}/keys/${CLIENT_NAME}.crt \
<(echo -e '</cert>\n<key>') \
${CA_DIR}/keys/${CLIENT_NAME}.key \
<(echo -e '</key>\n<tls-auth>') \
${CA_DIR}/keys/ta.key \
<(echo -e '</tls-auth>') \
>> ${CLIENT_DIR}/${CLIENT_NAME}.ovpn
echo -e "Client File Created - ${CLIENT_DIR}/${CLIENT_NAME}.ovpn"