Page 2 of 4 FirstFirst 1234 LastLast
Results 26 to 50 of 93
  1. #26
    Quote Originally Posted by bakhanbeigi View Post
    Can I install it near Cpanel /whm ?
    Yes it is possible

    Quote Originally Posted by bakhanbeigi View Post
    How can I add a vpn account for a user with limited BW ?
    This is a lot harder to achieve, I suggest you go to a specialist for this or use a VPN provider.

    Regards
    Stuart Munro

  2. #27
    Join Date
    Mar 2005
    Posts
    540
    Can Install this form WHM/Install RPM ?

  3. #28
    Join Date
    Mar 2005
    Posts
    540
    oh sorry I sent my message in wrong place.. sorry

  4. #29
    Join Date
    Mar 2005
    Posts
    540
    Thanks stuartornum for your guide,

    I have some question,

    whats your mean of DNS? is your mean ns1.mysite.com and ns2.maysite.com which I set for our domains ?

    I downloaded OpenVPN GUI from this link : http://openvpn.se/files/install_pack....3-install.exe
    (Your link does not work)
    In the status bar when I right click on OpenVPN Icon I have this options only:
    Proxy Setting, About, Exit
    and I don't have Connect , what should I do ?


    Regards

  5. #30
    Quote Originally Posted by webhostbeginner View Post
    Thanks stuartornum for your guide,

    I have some question,

    whats your mean of DNS? is your mean ns1.mysite.com and ns2.maysite.com which I set for our domains ?

    I downloaded OpenVPN GUI from this link : http://openvpn.se/files/install_pack....3-install.exe
    (Your link does not work)
    In the status bar when I right click on OpenVPN Icon I have this options only:
    Proxy Setting, About, Exit
    and I don't have Connect , what should I do ?


    Regards
    Do you have a server to connect to?
    Stuart Munro

  6. #31
    Join Date
    Mar 2005
    Posts
    540
    Yes I have a dedicated server with FC6
    I was installed the program in my server successfully , (I was installed OpenVPN from whm>install rpm)

  7. #32
    Join Date
    Mar 2005
    Posts
    540
    hello.....?

  8. #33
    Have you gone through the guide on the 1st page, because there is quite a lot of modifications that need to be done.

    Thnaks
    Stuart Munro

  9. #34
    Thanks for sharing this to us.
    Is a VPS with 512 RAM enough to do the job or do I really need a dedicated server?

    Thanks for advice.

  10. #35
    Hi,

    It really depends on how many people you want to be able to be connected at any one time...

    512MB VPS will do a lot of people, ive tested 128MB VPS with 20 people with no problems.

    Regards
    Stuart Munro

  11. #36
    Quote Originally Posted by stuartornum View Post
    Hi,

    It really depends on how many people you want to be able to be connected at any one time...

    512MB VPS will do a lot of people, ive tested 128MB VPS with 20 people with no problems.

    Regards
    Thanks again Stuart, I'll try this in a week or two.

    -ys-

  12. #37
    Join Date
    Aug 2004
    Location
    Shanghai
    Posts
    1,475
    What a long tutorial!

    To avoid doing all this, we have scripted all the setup for our Debian VPS. Simply follow the following steps. Note that it's generating generic answer to the questions for openssl, as most of the people don't care.

    1. Setup the sever

    Install openvpn and the needed utils:

    apt-get install openvpn openssl udev

    Get this file:

    http://dtcsupport.gplhost.com/openvpn-setup.tar.gz

    Move the content of openvpn-setup in the archive in the /etc/openvpn. Start the "setup" script. That should be enough to have a working setup. This setup script will create a key for 20 clients, which should be enough for most users. It guesses the IP address using netstat -rn, as most chances that your gateway interface is the one that is your public IP address.

    2. Client setup

    The configuration files for the client are in a generated folder client-config. You should send the files corresponding to the client in each computers. Note that the file is to be used with OpenVPN GUI client under windows, as this is the most common setup. It should be quite easy to change the config file for Unix (simply rename with .conf extention instead of .ovpn, and edit the path so OpenVPN can find it's keys).

    3. Windows setup

    Windows users can download the very good GUI here:

    http://openvpn.se/download.html

    Note that vista users HAVE to use this version (at least):

    http://openvpn.net/release/openvpn-2.1_rc7-install.exe

    It is recommend to install the GUI from http://openvpn.se/download.html, and then install the latest development version of openvpn from http://www.openvpn.net/index.php/downloads.html.

    4. How to fix the user access control problem under Vista

    Please follow any of the steps at the following URL to disable UAC. This allows a simpler use of OpenVPN, since the extra security controls in place interfere with OpenVPN: http://www.petri.co.il/disable_uac_in_windows_vista.htm

    5. Please edit the client.ovpn file (in wordpad in case notepad doesn't contain the carriage returns correctly), and add the following to entries, to ensure that it works correctly with Vista

    route-method exe
    route-delay 2

    6. In case you can connect, but browsing does not seem to work, you will probably need to fix the DNS setting in the server configuration

    push "dhcp-option DNS X.X.X.X"

    where of course X.X.X.X is the DNS of your server/VPS.

    7. In case you want many clients with many public IPs

    Then follow this script.

    Please change the IP address to a DNS server that is accessible by the server running the VPN.

    Enjoy!

    P.S: Note that you can find this tutorial (maybe updated) in our wiki pages)
    GPLHost:>_ open source hosting worldwide (I'm founder, CEO & official Debian Developer)
    Servers & our leading control panel and our Xen VPS hosting, which are already included in Debian and Ubuntu
    Available in: Kuala Lumpur, Singapore, Sydney, Seattle, Atlanta, Paris, London, Barcelona, Zurich, Israel

  13. #38
    Join Date
    May 2008
    Posts
    6
    cool tutorial

  14. #39
    Join Date
    Feb 2007
    Posts
    327
    Hello

    thanks

    7. You need to make a few changes to OpenVPN itself. Go to..

    Code:
    cd /etc/init.d/
    edit the openvpn file

    #Uncomment this line (line 119)
    Code:
    echo 1 > /proc/sys/net/ipv4/ip_forward
    Add these lines below it, changing 123.123.123.123 to your public IP address,

    Code:
    iptables -t nat -A POSTROUTING -s 192.168.2.3 -j SNAT --to 123.123.123.123
    iptables -t nat -A POSTROUTING -s 192.168.2.4 -j SNAT --to 123.123.123.123
    iptables -t nat -A POSTROUTING -s 192.168.2.5 -j SNAT --to 123.123.123.123
    iptables -t nat -A POSTROUTING -s 192.168.2.6 -j SNAT --to 123.123.123.123
    iptables -t nat -A POSTROUTING -s 192.168.2.7 -j SNAT --to 123.123.123.123
    iptables -t nat -A POSTROUTING -s 192.168.2.8 -j SNAT --to 123.123.123.123
    iptables -t nat -A POSTROUTING -s 192.168.2.9 -j SNAT --to 123.123.123.123
    iptables -t nat -A POSTROUTING -s 192.168.2.10 -j SNAT --to 123.123.123.123




    what means?

    nano /etc/init.d/openvpn

    line 110-123 is :

    while shift ; do
    [ -z "$1" ] && break
    if test -e /var/run/openvpn.$1.pid ; then
    PIDFILE=`ls /var/run/openvpn.$1.pid 2> /dev/null`
    NAME=`echo $PIDFILE | cut -c18-`
    NAME=${NAME%%.pid}
    stop_vpn
    echo -n " $NAME"
    else
    echo -n " (failure: No such VPN is running: $1)"
    fi
    done
    fi
    echo "."


    i must add this code
    echo 1 > /proc/sys/net/ipv4/ip_forward
    in where?
    please help me
    because all ports in openvpn for me is not open
    Thanks
    Soon ...

  15. #40
    @gplhost

    I can't seem to pm you here. I pm you in ym

  16. #41
    Join Date
    Aug 2004
    Location
    Shanghai
    Posts
    1,475
    This is because your account is too new, with not enough post. I do receive PM here from others.

    Thomas
    GPLHost:>_ open source hosting worldwide (I'm founder, CEO & official Debian Developer)
    Servers & our leading control panel and our Xen VPS hosting, which are already included in Debian and Ubuntu
    Available in: Kuala Lumpur, Singapore, Sydney, Seattle, Atlanta, Paris, London, Barcelona, Zurich, Israel

  17. #42

    Client configuration

    Hello,

    Thanks for the tutorial was really good.
    Do you have a tutorial for the client as wel.
    I use a linux client not windows.

    Greetz Rchood

  18. #43

    how do i create additional client keys on linux

    Can anyone advise how to create additional client keys after the initial install process is complete on linux. ?

    thanks, snoz

  19. #44
    Can anyone advise how to set up additional clients key after the initial install is complete..

  20. #45
    Join Date
    Aug 2004
    Location
    Shanghai
    Posts
    1,475
    Under CentOS, or Debian? If you look at my Debian setup script (that setups 20 clients by default), here is what it does:

    PHP Code:
            gen_pass=`dd if=/dev/random bs=64 count=1 2>|/dev/null | md5sum | cut -d' ' -f1 | awk '{print substr($0,0,16)}'`
            ( echo 
    "KG";
            echo 
    "NA";
            echo 
    "BISHKEK";
            echo 
    "OpenVPN-TEST";
            echo 
    "no-unit";
            echo 
    "client${clinum}";
            echo 
    "me@myhost.mydomain";
            echo 
    "${genpass}";
            echo 
    "no-company";
            
    sleep 1; echo "y";
            
    sleep 1; echo "y"; ) | ./build-key client${clinum}
            
    mkdir -p client-config/client${clinum}
            
    cp keys/ca.crt client-config/client${clinum}
            
    cp keys/client${clinum}.crt client-config/client${clinum}
            
    cp keys/client${clinum}.key client-config/client${clinum}
            echo 
    "client
    ;dev tap
    dev tun
    ;dev-node MyTap
    proto udp
    remote 
    $IP_ADDR 1194
    resolv-retry infinite
    nobind
    ;user nobody
    ;group nogroup
    persist-key
    persist-tun
    ;http-proxy-retry # retry on connection failures
    ;http-proxy [proxy server] [proxy port #]
    ;mute-replay-warnings
    ca \"c:\\\\Program Files\\\\OpenVPN\\\\config\\\\ca.crt\"
    cert \"c:\\\\Program Files\\\\OpenVPN\\\\config\\\\client
    ${clinum}.crt\"
    key \"c:\\\\Program Files\\\\OpenVPN\\\\config\\\\client
    ${clinum}.key\"
    comp-lzo
    verb 3
    >client-config/client${clinum}/client.ovpn 
    I hope that helps!

    Thomas
    GPLHost:>_ open source hosting worldwide (I'm founder, CEO & official Debian Developer)
    Servers & our leading control panel and our Xen VPS hosting, which are already included in Debian and Ubuntu
    Available in: Kuala Lumpur, Singapore, Sydney, Seattle, Atlanta, Paris, London, Barcelona, Zurich, Israel

  21. #46

    script

    thanks for this.. I will give it a try, I have realised that i need to use passwords for each user so will need to see if this will work for me.

    regards Rick Saul

  22. #47
    Join Date
    Aug 2004
    Location
    Shanghai
    Posts
    1,475
    Not really. What you need is a KEY, and that password is just a passphrase when generating the key. You wont need the password on the client side, generating a random password like I did is fine.

    Thomas
    GPLHost:>_ open source hosting worldwide (I'm founder, CEO & official Debian Developer)
    Servers & our leading control panel and our Xen VPS hosting, which are already included in Debian and Ubuntu
    Available in: Kuala Lumpur, Singapore, Sydney, Seattle, Atlanta, Paris, London, Barcelona, Zurich, Israel

  23. #48
    Quote Originally Posted by gplhost View Post
    Not really. What you need is a KEY, and that password is just a passphrase when generating the key. You wont need the password on the client side, generating a random password like I did is fine.

    Thomas
    thanks. I definitely want a password on the client side as I want to use openvpn portable on USB keys for staff. I want to make sure that if they lose the key then there is a level of security until I revoke it.

  24. #49
    very helpful tutorial

  25. #50
    Great tut

    Thanks

Page 2 of 4 FirstFirst 1234 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •