ITS101 Installation Manual
every client we have. To make this all easy, OpenVPN comes with batch files which help us to
perform all steps.
Below follows step by step the generation of all keys.
• Open an command box
• Go to the easy-rsa directory (c:\Program Files\openvpn\easy-rsa)
• run init-config.bat
• run vars.bat
• run clean-all.bat
• To build the CA run build-ca.bat
• for the server :
• run build-dh.bat
• run build-key-server.bat <machine-name>
• for each client :
• run build-key.bat <client-name>
Server setup
Now all keys are generated, we can setup our server. Below an configuration file is given.
Adjust this to your needs and save it with the keys in the c:\Program Files\openvpn\config
directory. Now you can start the server.
Configuration example:
# Which local IP address should OpenVPN listen on? (optional)
local 10.0.1.11 port 1194
# TCP or UDP server?
proto udp
#This is key to configuring our bridge
dev tun0
#direct these to your generated files
ca /etc/openvpn/keys/ca.crt
cert /etc/openvpn/keys/server.crt
key /etc/openvpn/keys/server.key
dh /etc/openvpn/keys/dh2048.pem
ifconfig-pool-persist ipp.txt
#ensure the range of ip addresses you use in the last two arguments
# of this statement are not in use by either the DHCP server or any other
# device on your internal network.
server 10.0.4.0 255.255.255.0
#needed to allow communication to internal network
client-to-client
keepalive 30 120
ARVOO Imaging Products B.V. page 17 of 33
To Next Page
Loading...