Difference between revisions of "Configurations for OpenVPN client"

From wiki.IPBRICK.COM
Jump to: navigation, search
(Example on how to rewrite the certificate)
 
(6 intermediate revisions by 2 users not shown)
Line 1: Line 1:
''' ***PAGE ON CONSTRUCTION*** '''
+
= SSL =
  
 +
'''Configuração de VPN SSL para ligar à IPBRICK com autenticação de dois fatores (2FA): https://www.youtube.com/watch?v=dGFEC0ctEHE'''
  
= How to configure an OpenVPN cliente for iOS IPhone/IPad =
+
Each user needs its own certificate. These are generated in the IPBrick communications server.
 +
Next, we will see the configuration data necessary for several devices.
  
* Download and install the application OpenVPN Connect from the Apple Store (iTunes):
+
NOTE: The attached configuration is protected by a unique password for each certificate/user.
 +
 +
== Smartphones/tablets - install OpenVPN client ==
 +
 
 +
=== iOS IPhone/IPad : Apple Store (iTunes) : OpenVPN Connect ===
 +
 
 +
* Download and install the application from:
 
** https://itunes.apple.com/pt/app/openvpn-connect/id590379981?mt=8
 
** https://itunes.apple.com/pt/app/openvpn-connect/id590379981?mt=8
* Install the certificate: the certificate.zip needs to be handled and rewritten so it fits all together in a single .ovpn file (the chapter below explains how to rewrite it);
+
* Install the certificate: the certificado.zip needs to be handled and rewritten so it fits all together in a single .ovpn file (see an example here: [[How_to_rewrite_an_OpenVPN_file|How to rewrite an OpenVPN file]]);
 
* Send the .ovpn file to the device, click to open and it will be automatically associated to the openVPN APP.
 
* Send the .ovpn file to the device, click to open and it will be automatically associated to the openVPN APP.
  
 +
=== Android : Google Play : OpenVPN Connect ===
 +
 +
* Download and install the application from:
 +
** https://play.google.com/store/apps/details?id=net.openvpn.openvpn
 +
* Install the certificate: the certificado.zip needs to be handled and rewritten so it fits all together in a single .ovpn file;
 +
* Send the .ovpn file to the device, click to open and it will be automatically associated to the openVPN APP.
  
== Example on how to rewrite the certificate ==
+
== PCs / Laptops ==
  
Once you have the zip file, decompress it.
+
=== MAC OS - TunnelBlick ===
  
ZIP file: user.zip - http://downloads3.ipbrick.com/wiki/user.zip
+
* Download and install the client application from:
 +
** https://tunnelblick.net/downloads.html
 +
* Install certificate: decompress the certified file to the folder "certificado", change the name of the folder for "certificado.tblk" (add the extension .tblk) and you'll notice that, when the folder's name is being changed, the icon of the folder will also change to one associated to tunnelblick, so you'll only have to click on this icon and it will appear an option to install;
 +
* Start connection: click on the tunnelblick icon in the upper right-hand corner (near the clock) and connect - insert the password of the certificate (as an option, you may save the password by clicking in the keys).
  
Inside you'll find four files:
+
=== Windows XP/7/Vista/8/10 - openVPN ===
* ca-server-ipbrick.crt
+
* Download and install the client application from:
md5sum: ca8153af46bf8cddab95a064e54c1474  ca-server-ipbrick.crt
+
** https://openvpn.net/index.php/download/community-downloads.html
* user.crt
+
* Install and configure the desktop shortcut to execute always as an Administrator;
md5sum: c7a060b8e842415586c25319188eac8b  user.crt
+
* Install certificate: decompress the certificado.zip to the folder %programfiles%\openvpn\config\ (check and adjust the path according to the installation);
* user.key
+
* Start connection:  
md5sum: c0898f304cef0dd56e38243937226883  user.key
+
* user.ovpn
+
md5sum: f03249bce06c8107c4d109faa34a75c8  user.ovpn
+
  
Then, open your .ovpn file and edit.
+
=== Linux - Native openVPN client ===
  
# Find "ca ca-server-ipbrick.crt":
+
* openvpn, network-manager-openvpn
#:* Place ";" before "ca ca-server-ipbrick.crt";
+
* Ubuntu, Debian : apt-get install network-manager-openvpn-gnome
#:* Enter a new line below;
+
#:* Type "<ca>";
+
#:* Enter another line;
+
#:* Copy all of the content from the file "ca-server-ipbrick.crt";
+
#:* Enter another line;
+
#:* Type </ca>.
+
# Immediately below, find "cert user.crt":
+
#:* Place ";" before "cert user.crt";
+
#:* Enter a new line below;
+
#:* Type "<cert>";
+
#:* Enter another line;
+
#:* Copy all of the content from the file "cert user.crt";
+
#:* Enter another line;
+
#:* Type </cert>.
+
# Once more, immediately below find "key user.key":
+
#:* Place ";" before "key user.key";
+
#:* Enter a new line below;
+
#:* Type "<key>";
+
#:* Enter another line;
+
#:* Copy all of the content from the file "key user.key";
+
#:* Enter another line;
+
#:* Type </key>.
+
  
''Note'': Use a text editor to open the files and copy its content.
+
After installing the client application, it's necessary to "double-click" on the attached file, which contains all the information on VPN configurations.
  
Your .ovpn file is now ready. You can see here the example created from the files presented: user.ovpn - http://downloads3.ipbrick.com/wiki/user.ovpn.
+
After completing the configuration, every time you wish to start the VPN connection, you just have to initiate the client application and give instructions to establish the recorded connection. It is also possible to memorize the credentials (password) to open the certificate.

Latest revision as of 09:15, 14 May 2024

SSL

Configuração de VPN SSL para ligar à IPBRICK com autenticação de dois fatores (2FA): https://www.youtube.com/watch?v=dGFEC0ctEHE

Each user needs its own certificate. These are generated in the IPBrick communications server. Next, we will see the configuration data necessary for several devices.

NOTE: The attached configuration is protected by a unique password for each certificate/user.

Smartphones/tablets - install OpenVPN client

iOS IPhone/IPad : Apple Store (iTunes) : OpenVPN Connect

Android : Google Play : OpenVPN Connect

  • Download and install the application from:
  • Install the certificate: the certificado.zip needs to be handled and rewritten so it fits all together in a single .ovpn file;
  • Send the .ovpn file to the device, click to open and it will be automatically associated to the openVPN APP.

PCs / Laptops

MAC OS - TunnelBlick

  • Download and install the client application from:
  • Install certificate: decompress the certified file to the folder "certificado", change the name of the folder for "certificado.tblk" (add the extension .tblk) and you'll notice that, when the folder's name is being changed, the icon of the folder will also change to one associated to tunnelblick, so you'll only have to click on this icon and it will appear an option to install;
  • Start connection: click on the tunnelblick icon in the upper right-hand corner (near the clock) and connect - insert the password of the certificate (as an option, you may save the password by clicking in the keys).

Windows XP/7/Vista/8/10 - openVPN

  • Download and install the client application from:
  • Install and configure the desktop shortcut to execute always as an Administrator;
  • Install certificate: decompress the certificado.zip to the folder %programfiles%\openvpn\config\ (check and adjust the path according to the installation);
  • Start connection:

Linux - Native openVPN client

  • openvpn, network-manager-openvpn
  • Ubuntu, Debian : apt-get install network-manager-openvpn-gnome

After installing the client application, it's necessary to "double-click" on the attached file, which contains all the information on VPN configurations.

After completing the configuration, every time you wish to start the VPN connection, you just have to initiate the client application and give instructions to establish the recorded connection. It is also possible to memorize the credentials (password) to open the certificate.