Difference between revisions of "OpenVPN 2.3 or lower on Centos 6"
Line 69: | Line 69: | ||
cp /usr/share/doc/openvpn-(version)/server.conf /etc/openvpn/ | cp /usr/share/doc/openvpn-(version)/server.conf /etc/openvpn/ | ||
</pre> | </pre> | ||
+ | Disable SELinux in '''/etc/selinux/config''' by changing | ||
+ | <pre> | ||
+ | SELINUX=enforcing | ||
+ | </pre> | ||
+ | to | ||
+ | <pre> | ||
+ | SELINUX=disabled | ||
+ | <pre> |
Revision as of 13:32, 14 March 2013
This guide shows how to install OpenVPN on Centos 6 x64
Check out if tun/tap is active:
cat /dev/net/tun
If tun is active you should receive this:
cat: /dev/net/tun: File descriptor in bad state
Make sure you have these packages installed:
yum install gcc make rpm-build autoconf.noarch zlib-devel pam-devel openssl-devel -y
Download LZO RPM
wget http://openvpn.net/release/lzo-1.08-4.rf.src.rpm
Download RPMForge Repo
wget http://pkgs.repoforge.org/rpmforge-release/rpmforge-release-0.5.2-2.el6.rf.x86_64.rpm
Build the rpm packages:
rpmbuild --rebuild lzo-1.08-4.rf.src.rpm rpm -Uvh lzo-*.rpm rpm -Uvh rpmforge-release*
Install OpenVPN:
yum install openvpn -y
Copy the easy-rsa folder to /etc/openvpn/:
cp -R /usr/share/doc/openvpn-2.2.2/easy-rsa/ /etc/openvpn/
Open up /etc/openvpn/easy-rsa/2.0/vars and change the below line:
export KEY_CONFIG=`$EASY_RSA/whichopensslcnf $EASY_RSA`
to:
export KEY_CONFIG=/etc/openvpn/easy-rsa/2.0/openssl-1.0.0.cnf
And save changes. Create the certificate:
cd /etc/openvpn/easy-rsa/2.0 chmod 755 * source ./vars ./vars ./clean-all
Build CA:
./build-ca
Build key server:
./build-key-server server
Build Diffie Hellman
./build-dh
Copy server config file server.conf from /usr/share/doc/openvpn-(version)/ to /etc/openvpn
cp /usr/share/doc/openvpn-(version)/server.conf /etc/openvpn/
Disable SELinux in /etc/selinux/config by changing
SELINUX=enforcing
to
SELINUX=disabled