pfSense Support Subscription

Author Topic: pfsense and openvpn for new users tutorial <-- with Site-To-Site now  (Read 51585 times)

0 Members and 1 Guest are viewing this topic.

Offline dairaen

  • Jr. Member
  • **
  • Posts: 26
    • View Profile
Re: pfsense and openvpn for new users tutorial
« Reply #15 on: October 11, 2006, 03:00:31 pm »
damn, i already cutted that, how the f*** does it made it in there again!?

Thanks, naturally thats crap. I fixed it.


Offline SFM

  • Jr. Member
  • **
  • Posts: 31
    • View Profile
Re: pfsense and openvpn for new users tutorial
« Reply #16 on: October 12, 2006, 01:42:15 pm »
dairaen

Nice work on the documentation, I wish it would of been around before I set it up (would of made it easier).
This will be very helpfull for users who want to setup Openvpn on Pfsense.


Offline dairaen

  • Jr. Member
  • **
  • Posts: 26
    • View Profile
Re: pfsense and openvpn for new users tutorial
« Reply #17 on: October 15, 2006, 05:33:08 am »
cheers,

new version online, since ppl still seem to have
problems with OpenVPN i added "Site-to-Site" VPN, any volunteers
are welcome to verify the new section.

http://www.uplinksecurity.de/data/pfsense-ovpn.pdf



Offline dairaen

  • Jr. Member
  • **
  • Posts: 26
    • View Profile
Re: pfsense and openvpn for new users tutorial <-- with Site-To-Site now
« Reply #18 on: October 15, 2006, 06:40:19 am »
sorry, uploaded a wrong version, please download again if you did,
a screenshot and some ip-adresses were wrong.

Offline sullrich

  • Hero Member
  • *****
  • Posts: 5110
    • View Profile
    • pfSense
Re: pfsense and openvpn for new users tutorial <-- with Site-To-Site now
« Reply #19 on: October 15, 2006, 12:06:54 pm »
Thanks for doing this!   I have posted this to the tutorials section.  Just let me know when to update it.

Offline dairaen

  • Jr. Member
  • **
  • Posts: 26
    • View Profile
Re: pfsense and openvpn for new users tutorial <-- with Site-To-Site now
« Reply #20 on: October 15, 2006, 03:54:54 pm »
sorry, small update (should be the last for a while)

* removed the snapshot and RC stuff and advised ppl to use 1.0 Release.
* fixed some typos
* fixed some formatting stuff (i will *never* use Word & images again...)

And there is a small typo in your tutorial section, "warrior" is mispelled.

http://www.uplinksecurity.de/data/pfsense-ovpn.pdf

keep on ;)

Offline Hunter

  • Newbie
  • *
  • Posts: 8
    • View Profile
Re: pfsense and openvpn for new users tutorial <-- with Site-To-Site now
« Reply #21 on: October 16, 2006, 10:06:57 am »
dairaen, thanks a million you are the MAN!

Hunter

Offline sullrich

  • Hero Member
  • *****
  • Posts: 5110
    • View Profile
    • pfSense
Re: pfsense and openvpn for new users tutorial <-- with Site-To-Site now
« Reply #22 on: October 17, 2006, 09:24:26 am »
Tutorial sync'd on pfSense.com

Offline dairaen

  • Jr. Member
  • **
  • Posts: 26
    • View Profile
Re: pfsense and openvpn for new users tutorial <-- with Site-To-Site now
« Reply #23 on: October 18, 2006, 04:40:38 pm »
cheers,

updated some parts to prevent further problems like:
http://forum.pfsense.org/index.php/topic,2448.0.html

As usual, latest version is found here:
http://www.uplinksecurity.de/data/pfsense-ovpn.pdf

keep on & kind regards
dairaen


Offline sullrich

  • Hero Member
  • *****
  • Posts: 5110
    • View Profile
    • pfSense
Re: pfsense and openvpn for new users tutorial <-- with Site-To-Site now
« Reply #24 on: October 20, 2006, 11:52:36 am »
pfSense openvpn tutorial sync'd.

Thanks!

Offline dairaen

  • Jr. Member
  • **
  • Posts: 26
    • View Profile
Re: pfsense and openvpn for new users tutorial <-- with Site-To-Site now
« Reply #25 on: November 02, 2006, 12:34:36 pm »
cheers,

again some updates:

* added a FAQ section at the bottom with solutions to the latest
postings
* added link to "my certificate wizard"

http://www.uplinksecurity.de/data/pfsense-ovpn.pdf

kind regards
dairaen

Offline hoba

  • Administrator
  • Hero Member
  • *****
  • Posts: 5837
  • What was the problem to this solution again?
    • View Profile
    • pfSense
Re: pfsense and openvpn for new users tutorial <-- with Site-To-Site now
« Reply #26 on: November 02, 2006, 12:56:56 pm »

again some updates:

kind regards
dairaen

Thanks for your work! We really appreciate your help on this!  :D

Offline sullrich

  • Hero Member
  • *****
  • Posts: 5110
    • View Profile
    • pfSense
Re: pfsense and openvpn for new users tutorial <-- with Site-To-Site now
« Reply #27 on: November 02, 2006, 03:16:27 pm »
File in the tutorial section has been sync'd.  Thanks!

Offline micromani

  • Newbie
  • *
  • Posts: 8
    • View Profile
Re: pfsense and openvpn for new users tutorial <-- with Site-To-Site now
« Reply #28 on: April 03, 2007, 10:58:00 am »
For first time: sorry for my english  ::)

Second: little problem

I've log in my pfsense by putty (for windows)

Option 8 (Shell)

down penvpn-2.0.9.tar.gz

# tar -xvzf openvpn-2.0.9.tar.gz
# cd openvpn-2.0.9
# cd easy-rsa
# vi vars

[...] After that some scripts need to be executed, if asked for “Common Name” enter
the hostname you used in “General Setup” this time. Here are my keystrokes:
[/tmp/openvpn-2.0.8/easy-rsa]# source ./vars [...]


# source ./vars
export: Command not found.
D: Undefined variable.

Why?

My Vars file:

# NOTE: If you installed from an RPM,
# don't edit this file in place in
# /usr/share/openvpn/easy-rsa --
# instead, you should copy the whole
# easy-rsa directory to another location
# (such as /etc/openvpn) so that your
# edits will not be wiped out by a future
# OpenVPN package upgrade.

# This variable should point to
# the top level of the easy-rsa
# tree.
export D=`/tmp/`

# This variable should point to
# the openssl.cnf file included
# with easy-rsa.
export KEY_CONFIG=$D/openssl.cnf

# Edit this variable to point to
# your soon-to-be-created key
# directory.
#
# WARNING: clean-all will do
# a rm -rf on this directory
# so make sure you define
# it correctly!
export KEY_DIR=$D/keys

# Issue rm -rf warning
echo NOTE: when you run ./clean-all, I will be doing a rm -rf on $KEY_DIR

# Increase this to 2048 if you
# are paranoid.  This will slow
# down TLS negotiation performance
# as well as the one-time DH parms
# generation process.
export KEY_SIZE=1024

# These are the default values for fields
# which will be placed in the certificate.
# Don't leave any of these fields blank.
export KEY_COUNTRY=KG
export KEY_PROVINCE=NA
export KEY_CITY=BISHKEK
export KEY_ORG="OpenVPN-TEST"
export KEY_EMAIL="me@myhost.mydomain"


I must tell too:
# D=5
D=5: Command not found.

while if I make 'D=5' on other shell (like ubuntu o similar) I write a variable.

I'm niubby for linux but I think that the Shell from prompt is'nt usually shell!

Help me!


Online GruensFroeschli

  • Green Frog
  • Global Moderator
  • Hero Member
  • *****
  • Posts: 5060
  • No i will not fix your computer!
    • View Profile
    • FFXI related
Re: pfsense and openvpn for new users tutorial <-- with Site-To-Site now
« Reply #29 on: August 14, 2007, 04:02:56 am »
you use a TAP device but have to use a TUN device

if you use the redirect it has to like like this:
push "redirect-gateway def1"
push "dhcp-option DNS x.x.x.x"


you push the custom DNS since the clients loose their route to their local DNS after the redirect is in place.
« Last Edit: August 14, 2007, 04:23:24 am by GruensFroeschli »
We do what we must, because we can.
(Except when you PM me to help you directly - DONT: keep your issues in the forum)