OpenVPN

(category)
Line 17: Line 17:
You'll need the [http://maemo.org/downloads/product/Maemo5/openvpn/ openVPN client] and the [http://maemo.org/downloads/product/Maemo5/openvpn-applet/ openVPN applet]
You'll need the [http://maemo.org/downloads/product/Maemo5/openvpn/ openVPN client] and the [http://maemo.org/downloads/product/Maemo5/openvpn-applet/ openVPN applet]
-
Create a matching client setup conf and copy it together with the client certificate, key and the ca file to the /etc/openvpn/ directory on the device.
+
Create a matching client setup conf and copy it together with the client certificate, key and the ca file to the <code>/etc/openvpn/</code> directory on the device.
The client.conf may need:
The client.conf may need:
Line 28: Line 28:
The applet will pickup any .conf files in that directory.
The applet will pickup any .conf files in that directory.
 +
[[Category:Software]]
[[Category:HowTo]]
[[Category:HowTo]]

Revision as of 09:08, 26 April 2010

This page describes setting up openVPN on an N900.

Server Setup

The server should be setup like so:

 http://openvpn.net/index.php/open-source/documentation/howto.html

udp is better than tcp if you can use it. If your client is likely to be behind firewalls then tcp is more likely to work.

Consider whether compression is useful - if you're transferring media or using ssh tunnels then it may not gain much.

If you need access to a nameserver on your LAN you'll need this in the server.conf:

push "dhcp-option DNS 10.0.0.7"            
push "dhcp-option DOMAIN dgreaves.com"

Client Setup

You'll need the openVPN client and the openVPN applet

Create a matching client setup conf and copy it together with the client certificate, key and the ca file to the /etc/openvpn/ directory on the device.

The client.conf may need:

# Allow scripts to be run
script-security 2
# and update the config when a route changes
up /etc/openvpn/maemo-update-resolvconf
plugin /opt/openvpn/lib/openvpn/openvpn-down-root.so "script_type=down /etc/openvpn/maemo-update-resolvconf"

The applet will pickup any .conf files in that directory.