![]() When you create the Certificate Authority (CA), you can just press Enter to accept your default values from above. ![]() varsĬreate the keys and certificates for OpenVPN. Set the default distinguished name (DN) variables to your desired values, e.g.: export KEY_COUNTRY="PL"Īfter saving the file, source the environment variables from the values in the file: source. In the same way as you did for your non-root user id, make the colors of PowerShell less confusing by editing root’s editor configuration file: vi ~/.vimrcĬopy the Easy RSA materials into your /etc/openvpn directory: cp -r /usr/share/easy-rsa /etc/openvpn If you do not know the root password, then set it now: sudo passwd root ![]() Install the OpenVPN packages: sudo apt install openvpn easy-rsa Write the file to disk, and quit the editor. Write the file to disk, and quit the editor.Įdit the system control configuration file: sudo vi /etc/nfĪllow packet forwarding by uncommenting the line: _forward=1Īt the bottom, add two lines to implement BBR congestion control: _qdisc=fq Set the syntax highlighting off: syntax off To make the colors of PowerShell less confusing, edit your editor configuration file: vi ~/.vimrc Persist iptables across reboots: sudo apt install iptables-persistent Sudo iptables -P INPUT DROP sudo iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE Sudo iptables -A INPUT -p tcp -dport 443 -j ACCEPT Sudo iptables -A INPUT -p tcp -dport 22 -j ACCEPT As an example, if your user name on the server is ubuntu, and your server’s IP address is 3.86.252.179: ssh your existing packages up to date: sudo apt updateĬonfigure the server firewall to allow TCP input on port 22 (for SSH), port 443 (for Stunnel), and masquerade the outgoing IP address: sudo iptables -A INPUT -m conntrack -ctstate ESTABLISHED,RELATED -j ACCEPT Since the Windows 10 update of April 2018, the OpenSSH client is installed by default and expects to find your SSH private key in your. These instructions are for an Ubuntu Linux 18.04 server, a Windows 10 PC, and a phone or tablet running Android.
0 Comments
Leave a Reply. |