wiki.ipfire.org

The community-maintained documentation platform of IPFire

User Tools

Site Tools


configuration:services:openvpn:config

OpenVPN configuration on IPFire

Certificates and keys

To be able to use OpenVPN on IPFire for Roadwarrior but also in Net-to-Net mode, the Root and Host certificate (OpenVPN's certification authorities) should be generated as the first step. How this can be done can be found in the following area “certification authorities and keys”, while less common options are described in “Extended usage of the CA and keys”.

Certificate authorities How the Root and Host server certificate as well as all required Keys can be generated, can be read up here.
Extended usage of the CA and keys The Upload of an other certificate instance, generating a new Diffie-Hellman parameter and the insight into the Certificate Revocation list can be found in here.

Client-to-Net configuration (Roadwarrior)

Roadwarrior connection are client-to-network (point-to-network) connections. Here, a single client will be connected with IPFire´s OpenVPN server. For a better overview, the wiki is divided into separate areas which are in order by the webinterface.

roadwarrior_icon2.jpg Global settings The global server settings of the OpenVPN sever are explained in here.
roadwarrior_icon2.jpg Static IP address pools In addition to the dynamic allocation of the OpenVPN IP addresses, you can also assign separated subnets with static IPs which is also a requirement for IPFires VPN firewalling capabilities.
roadwarrior_icon2.jpg Advanced server options In this area, more configuration options are offered.
roadwarrior_icon2.jpg Client status and control In this area you can configure, enable/disable, edit and delete the clients.

Additonal informations

roadwarrior_icon2.jpg OpenVPN and WLAN OpenVPN can give additional security to your WLAN connections. Describes how to secure Wireless connections.
roadwarrior_icon2.jpg Additional knowledge Additional configurations for specific operating systems.
Client Software with GUI
  • OpenVPN Tools with GUI for Windows and one for Mac OS, and also for Linux.
  • OpenVPN Tools with GUI (for Windows, Linux, MAC) can also be downloaded directly from the OpenVPN homepage openvpn.net.

Net-to-Net configuration

In this configuration, two networks via two IPFire gateways (Network-to-Network) are connected together with a so-called P2P (Peer-to-peer) mode.

n2n_icon2.jpg Create a network-to-network connection How to create a network-to-network connection.
n2n_icon2.jpg TLS-Server configuration How to create a TLS-server instance.
n2n_icon2.jpg TLS-Client configuration How to create a TLS-client instance.
n2n_icon2.jpg Activate the connection How to activate the connection.

Back to OpenVPN main page

configuration/services/openvpn/config.txt · Last modified: 2019/01/22 15:50 by Jon