This describes how to setup a permanent tunnel to privateinternetaccess. First download the certificates from privateinternetaccess here: https://www.privateinternetaccess.com/openvpn/openvpn.zip Unzip the .pem and .crt file to /config/openvpn-client on the edgerouter. Create a file called “client.ovpn” in the same folder with this content client dev tun proto udp resolv-retry infinite nobind persist-key persist-tun cipher aes-128-cbc auth sha1 tls-client […]
Month: February 2017
Easy certificate generation for openvpn
This script automates the process of generating certificates for OpenVPN on the edgerouter. Place this script under /config/openvpn and chmod it 755. Remember to edit the setup part of the script before running it. All output files are saved in cwd. #!/bin/bash #———————————————————————————————– # Setup CAname=Alex-CA CAsubject=”/C=DK/ST=SomeCity/L=SomeCity/O=CAworld” CAexpire=1000 CAkeyLength=2048 ServerName=vpn.mydomain.com ServerSubject=”/C=DK/ST=SomeCity/L=SomeCity/O=ServerWorld/CN=${ServerName}” ServerExpire=1000 ServerKeyLength=2048 ClientName=myclient ClientSubject=”/C=DK/ST=SomeCity/L=SomeCity/O=ClientWorld/CN=${ClientName}” ClientExpire=1000 […]