mirror of https://codeberg.org/CRXN/docs.git
1.2 KiB
1.2 KiB
OpenVPN
Configuration
mode p2p
remote <remote>
local <local>
proto <proto>
rport <rport>
lport <lport>
dev-type tun
dev <interface>
script-security 1
cipher aes-256-cbc
resolv-retry infinite
persist-key
persist-tun
ifconfig-ipv6 <IPv6 A> <IPv6 B>
secret <secret>
Replace <remote>
with the IP address of the peer and <local>
with your IP address.
Replace <proto>
with udp
for a connection over IPv4 or with udp6
for a connection over IPv6.
Choose a port for <lport>
and set <rport>
to the port of your peer. <lport>
on udp must be opened accordingly in the local firewall.
Replace <interface>
with the appropriate interface name for your peer.
Replace <IPv6 A>
with your link-local IPv6 and <IPv6 B>
with the link-local IPv6 of your peer.
Replace <secret>
with the path to the Secret Static Key.
Generate a Secret Static Key:
openvpn --genkey secret <filename>.key
Automatic start with systemd
If you save the OpenVPN configuration under /etc/openvpn/<filename>.conf
, you can use systemd to start the OpenVPN connection or set an automatic start:
systemctl start openvpn@<filename>
systemctl enable openvpn@<filename>