centos下安裝openvpn———客戶端
[root@mi7 ~]# cd /etc/yum.repos.d/
[root@mi7 yum.repos.d]# wget http://dl.fedoraproject.org/pub/epel/5/x86_64/epel-release-5-4.noarch.rpm
[root@mi7 yum.repos.d]# wget http://rpms.famillecollet.com/enterprise/remi-release-5.rpm
[root@mi7 yum.repos.d]# sudo rpm -Uvh remi-release-5*.rpm epel-release-5*.rpm
[root@mi7 yum.repos.d]# vi remi.repo
[remi]
name=Les RPM de remi pour Enterprise Linux 5 - $basearch
#baseurl=http://rpms.famillecollet.com/enterprise/5/remi/$basearch/
mirrorlist=http://rpms.famillecollet.com/enterprise/5/remi/mirror
enabled=1
gpgcheck=1
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-remi
[root@mi7 yum.repos.d]# yum -y install openvpn
[root@mi7 yum.repos.d]# rpm -qa openvpn
openvpn-2.3.6-1.el5
在mi14服務端上申請證照
[root@mi14 openvpn]# cd /usr/share/doc/openvpn-2.2.2/easy-rsa/2.0
[root@mi14 2.0]# . vars
NOTE: If you run ./clean-all, I will be doing a rm -rf on /usr/share/doc/openvpn-2.2.2/easy-rsa/2.0/keys
[root@mi14 2.0]# ./build-key-pass mi7
Generating a 1024 bit RSA private key
............++++++
...............++++++
writing new private key to 'mi7.key'
Enter PEM pass phrase:mi123
Verifying - Enter PEM pass phrase:mi123
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [CN]:回車
State or Province Name (full name) [GD]:回車
Locality Name (eg, city) [BeiJing]:回車
Organization Name (eg, company) [NetSky Studio]:回車
Organizational Unit Name (eg, section) [mi14]:mi7
Common Name (eg, your name or your server's hostname) [mi7]:mi7
Name [mi14]:mi7
Email Address [mi14@mi.com]:mi7@mi.com
Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:回車
An optional company name []:回車
Using configuration from /usr/share/doc/openvpn-2.2.2/easy-rsa/2.0/openssl-1.0.0.cnf
Check that the request matches the signature
Signature ok
The Subject's Distinguished Name is as follows
countryName :PRINTABLE:'CN'
stateOrProvinceName :PRINTABLE:'GD'
localityName :PRINTABLE:'BeiJing'
organizationName :PRINTABLE:'NetSky Studio'
organizationalUnitName:PRINTABLE:'mi7'
commonName :PRINTABLE:'mi7'
name :PRINTABLE:'mi7'
emailAddress :IA5STRING:'mi7@mi.com'
Certificate is to be certified until Jan 2 09:10:32 2025 GMT (3650 days)
Sign the certificate? [y/n]:y
1 out of 1 certificate requests certified, commit? [y/n]y
Write out database with 1 new entries
Data Base Updated
[root@mi14 2.0]# cp keys/mi7.* /etc/openvpn/
[root@mi7 openvpn]# scp 103.227.78.169:/etc/openvpn/mi7* /etc/openvpn/
[root@mi7 openvpn]# scp 103.227.78.169:/etc/openvpn/ca1.* /etc/openvpn/
[root@mi6 ~]# scp /etc/openvpn/client.ovpn mi7:/etc/openvpn/
[root@mi7 openvpn]# vi client.ovpn
cert mi7.crt
key mi7.key
[root@mi7 openvpn]# service openvpn start
[root@mi7 openvpn]# openvpn --config /etc/openvpn/client.ovpn
nohup openvpn --config /etc/openvpn/client.ovpn
[root@mi7 ~]# ps -ef | grep openvpn
root 27512 26386 0 17:23 pts/1 00:00:00 openvpn --config /etc/openvpn/client.ovpn
root 27584 27549 0 17:24 pts/2 00:00:00 grep openvpn
[root@mi7 ~]# ping 10.47.0.8
PING 10.47.0.8 (10.47.0.8) 56(84) bytes of data.
64 bytes from 10.47.0.8: icmp_seq=1 ttl=64 time=0.720 ms
64 bytes from 10.47.0.8: icmp_seq=2 ttl=64 time=0.892 ms
來自 “ ITPUB部落格 ” ,連結:http://blog.itpub.net/29819001/viewspace-1392090/,如需轉載,請註明出處,否則將追究法律責任。
相關文章
- centos下安裝openvpn———客戶端client.ovpnCentOS客戶端client
- centos安裝oracle客戶端CentOSOracle客戶端
- Windows下安裝redis客戶端WindowsRedis客戶端
- windows7下安裝oracle客戶端WindowsOracle客戶端
- Oracle 客戶端安裝Oracle客戶端
- MySQL 客戶端安裝MySql客戶端
- zabbix 客戶端安裝客戶端
- oracle客戶端安裝Oracle客戶端
- aix安裝oracle客戶端AIOracle客戶端
- Ceph的客戶端安裝客戶端
- Git-客戶端安裝Git客戶端
- UBUNTU下L2TP客戶端安裝配置Ubuntu客戶端
- Mac OS X 10.6.8下安裝Oracle客戶端MacOracle客戶端
- Windows下svn客戶端TortoiseSVN的安裝和操作Windows客戶端
- db2 客戶端安裝DB2客戶端
- linux安裝mysql客戶端LinuxMySql客戶端
- zabbix監控客戶端安裝客戶端
- 安裝 Oracle 即時客戶端Oracle客戶端
- 配置安裝版Oracle客戶端Oracle客戶端
- 免安裝Oracle客戶端使用Oracle客戶端
- CentOS7.1安裝Oracle 12.1客戶端以及cx_OracleCentOSOracle客戶端
- Ubuntu 16.04下安裝資料庫Oracle客戶端Ubuntu資料庫Oracle客戶端
- [轉載+補充]windows下SVN客戶端的安裝Windows客戶端
- centos6.2lnmp環境下安裝zabbix(中文環境)並且監控客戶端CentOSLNMP客戶端
- graylog 客戶端的安裝配置客戶端
- kickstart之批量安裝puppet客戶端客戶端
- 配置免安裝版Oracle客戶端Oracle客戶端
- git SourceTree 客戶端 安裝/使用教程Git客戶端
- linux_ganglia客戶端安裝Linux客戶端
- oracle客戶端無人值守安裝 靜默安裝Oracle客戶端
- openVPN 安裝
- linux簡易 Oracle客戶端安裝LinuxOracle客戶端
- 「Oracle」客戶端 PL/SQL DEVELOPER 安裝使用Oracle客戶端SQLDeveloper
- 客戶端自動配置安裝(expect工具)客戶端
- OpenStack collectd的從零安裝客戶端客戶端
- SegWit2x客戶端安裝教程客戶端
- Ubuntu 16.04安裝FTP客戶端filezillaUbuntuFTP客戶端
- 如何在 Ubuntu 中安裝 QGit 客戶端UbuntuGit客戶端