Today I want to show you how to configure the OpenVPN client. I will present the configuration on the example of Linux operating system. On the Windows it is simple, but a lot of people do not know how to configure this on Linux machine. What is OpenVPN? It is an application which will allow you to create a virtual private connection with some network. Some users use this to change IP address, but a lot of companies use OpenVPN for authorized connection with their LAN network.
You really should use VPN connections, especially if you like Free WiFi hotspots. When you connect to a VPN, you usually launch a VPN client on your computer (or click a link on a special website), login with your credentials, and your computer exchanges trusted keys with a far away server.
I will show my installation on the Debian system. It is the most popular Linux. If you have got Ubuntu/Kubuntu then you will be able to perform the same steps.
- At first you should install special application. You will need the
openvpn
package. OpenVPN is on the repository, so you can install via apt-get. If you would like to do it, you must open Terminal and put command. Then you can connect like this:
sudo apt-get install -y network-manager-openvpn
or
sudo apt-get install openvpn
The sudo is important because otherwise OpenVPN will not be able to establish the connection. I think that this is because of the fact that route table has to changed.
- The next step is a create of the OVPN file. It is file with configuration of client. You should put a gateway address, port number, put special keys (ca, cert, key, tls-auth). Sample file looks like this
client dev tun proto udp remote 10.0.0.1 12194 resolv-retry infinite nobind persist-key persist-tun ca /home/user/ca.crt # public cert cert /home/user/my_key.crt # private cert key /home/user/my_key.key # private key ns-cert-type server tls-auth /home/user/ca.key 1 # public key comp-lzo verb 3
This configuration have to be downloaded from server. If the server is your, then it will not be a problem. If it is not, then you must ask administrator about this.
- Then you must pull the file to OpenVPN. You should do this via terminal. It is better that GUI.
sudo openvpn --config openvpn_config.opvn
To make it permanent, edit /etc/default/openvpn
and uncomment the line AUTOSTART="all".