Hi folks,
6 months ago I followed a guide that's now been removed from openwrt.
I'm running davidc502 luci for my linksys acs1900.
The new guide (basic setup) looks easy enough to do, but the question is:
can I copy and paste every section in putty? Or is it best to create a file/script file of some kind and import that? Or run every line, line by line?
For instance, chapter 3. Basic server.
Configure VPN server
| sed -e "s/^.*\///;s/\.\w*$//" \
| while read VPN_ID
do
VPN_CONF="/etc/openvpn/${VPN_ID}.conf"
VPN_CERT="$(openssl x509 -in "${EASYRSA_PKI}/issued/${VPN_ID}.crt")"
VPN_KEY="$(cat "${EASYRSA_PKI}/private/${VPN_ID}.key")"
cat << EOF > "${VPN_CONF}"
verb 3
user nobody
group nogroup
dev ${VPN_DEV}
port 1194
proto udp
server ${VPN_POOL}
topology subnet
client-to-client
keepalive 10 120
persist-tun
persist-key
push "dhcp-option DNS ${VPN_DNS}"
push "dhcp-option DOMAIN ${VPN_DOMAIN}"
push "redirect-gateway def1"
push "persist-tun"
push "persist-key"
<dh>${NL}${DH_KEY}${NL}</dh>
<tls-crypt>${NL}${TC_KEY}${NL}</tls-crypt>
<ca>${NL}${CA_CERT}${NL}</ca>
<cert>${NL}${VPN_CERT}${NL}</cert>
<key>${NL}${VPN_KEY}${NL}</key>
EOF
chmod "u=rw,g=,o=" "${VPN_CONF}"
done
service openvpn restart`
Is this how all other users also install/edit from putty?
I'm asking because I couldn't find any good explanation on how to install, but clearly all the commands are there..ready to be copied in
Edit: Been a long time since i've used the basic editors... Yup, that's pretty much the main tools....
A remote session ( putty or ssh or whatever )
An editor ( nano, joe, vim, emacs )
The other one is straight copy.... winscp or similar can commands and copies two quite smoothly.....
I mean't to recommend nano...... it's easier.... ( sorry about the soundtrack )
But, can I use notepad, copy all text to a file and save it as something.sh, and use winscp copy to tmp folder and then run it from there? Or does it need a compilation before doing so? If thats easier than using joe or nano?
The problem arises for most in that they are not aware that some editors save in various ENCODINGs. So lookup the net for tutorials about editing basic linux files and encoding if your using windows ( notepad++ ) was an editor I used to use alot.
OK what I did was copy two files (chapter 3 and chapter 4) to tmp/tmp/ on the router.
Did chmod +x /tmp/tmp/filenames.sh and the did ./tmp/tmp/filename.sh to run it.
First file (chapter 3) finished quite quickly, with only one error:
line 47: service: not found
which is: service openvpn restart
However,openvpn service exists.
Next I did chapter 4 and no error message came, but it says that a openvpnclient file is created:
/etc/openvpn/vpnclient.ovpn
Checking in the web gui, I can't find a openvpn instance called openvpn, is this ok?
Edit: testing on my iphone, and it looks like it's working.
I will have to add default gateway 1 or something to the config file, so I can send all traffic thru the vpnserver. I'll let you know
Great stuff Thanks for your help! It's working nicely now, and no issue with iPhone either (I do remember there was some lz-compression issue or something).
I believe a tutorial for windows users would be appreciated on the openwrt pages tho
Yes it's a process running under system - startup as you said, I didn't catch that it would be a service running there and not under the service - openvpn tab in the gui. Doesn't matter to me as long as it works
There are traps with this procedure, as DOS/ windows and UN*X use different line endings. Some applications may accept both, but in many cases it will fail (sometimes spectacularly, sometimes in mire subtle ways). Better editors allow you to choose the line ending style.
)