[2024-feb-29] Sad news: Eric Layton aka Nocturnal Slacker aka vtel57 passed away on Feb 26th, shortly after hospitalization. He was one of our Wiki's most prominent admins. He will be missed.

Welcome to the Slackware Documentation Project

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revisionBoth sides next revision
howtos:network_services:openvpn [2018/03/02 00:14 (UTC)] – Correct references to the name OpenVPN, give them consistent casing. bifferoshowtos:network_services:openvpn [2018/03/02 00:28 (UTC)] – Move passphrase removal to the passphrase section bifferos
Line 168: Line 168:
 # cp $HOME/easy-rsa/easyrsa3/pki/private/server1.key \ # cp $HOME/easy-rsa/easyrsa3/pki/private/server1.key \
 > /etc/openvpn/keys/ > /etc/openvpn/keys/
-</code> 
- 
-If you want to run the server as a daemon on system boot, it's necessary to remove the pass-phrase from the server1.key file first.  Don't forget to set permissions on the key to avoid it being world-readable. 
- 
-<code> 
-# cd /etc/openvpn/keys 
-# openssl rsa -in server1.key -out tmp.key 
-# mv tmp.key server1.key 
-# chmod 600 server1.key 
 </code> </code>
  
Line 898: Line 889:
 fi fi
 </code> </code>
 +
 +An alternate method (albeit less secure) is to remove the passphrase from server1.key file altogether.  Don't forget to set permissions on the key to avoid it being world-readable.
 +
 +<code>
 +# cd /etc/openvpn/keys
 +# openssl rsa -in server1.key -out tmp.key
 +# mv tmp.key server1.key
 +# chmod 600 server1.key
 +</code>
 +
  
 ===== 11. IP Routing ===== ===== 11. IP Routing =====
 howtos:network_services:openvpn ()