I am new to Lede,
and now I would like to configure a VPN connection.
goal: I want to connect to my router from outside my network with openVPN
for my work i am a lot aboard. I used to have a fritzbox, and then i used FritzVPN to make a vpn tunnel.
But now i have a new provider and i installed a router and flashed lede on it.
I use the old version because the latest do not use Easy-ESA - I have no luck with the latest wiki page due to openssl error
The only thing I didd not follow them is: Allow VPN Tunnel Utilization <----this is duplicate, make things not work. you don't need that 2 line uci add, because it has already been included in the firewall config file
While the tutorials walk one through making the keys on the router, there are Easy-RSA tools to make keys on the PC, which is so much easier. Then just upload the files.
I agree. it takes ages in a slow router to gen the dh key. On a newer router like my WRT1900ACS, it is much faster, not to mention on PC
a fair chunk of the time is just getting enough randomness in the router, a busy
router will actually generate keys faster than a newly booted slow router.
option enabled '1'
option client '1'
option remote 'private.dom'
option port '1197'
option proto 'udp'
option dev 'tap0'
option tun_mtu '1500'
option tun_mtu_extra '32'
option ca '/etc/openvpn/ca.crt'
option cert '/etc/openvpn/client.crt'
option key '/etc/openvpn/client.key'
#option tls_crypt '/etc/openvpn/ta.key' //doesn't work on LEDE, bugged for several weeks already
option tls_auth '/etc/openvpn/ta.key 1'