Hello, I have this super computer for Eng simulations (Win :/). The Uni can't open RDP port, which is the one needed for dumb users.
I need to fix it.
Proposal 1:
SSH Tunnel -> OpenWRT is a single user mode OS. I don't know if it is a good idea to create multiple users just for that.
Propostal 2:
OpenVPN Server -> Ok. I admit it. I've built a lot of VPN servers in LXC machines or ubuntu server only copy and paste howto over the internet. I can find a descent for OpenWRT. Most of them are for client side.
With one configuration including ca I can share and let them install the client and open the .opvn file.
Suggestions are welcome and good reading and objective suggestions as well.
These days I wouldn't bother about tunneling other protocols over ssh anymore, full VPN solutions are easy enough and much more convenient. IPsec, wireguard and OpenVPN (among others) are at your disposal and can be set up on OpenWrt (all offering the option to run as gateway server on OpenWrt, to allow your clients to dial in).
It worked very well, however I have a question. The script always create the same client file. I suppose that I need to create one for each user, correct? How do I do that?
I've successfully implemented a OpenVPN server on a TP-Link. I've tried again in a ZyXEL NBG6817. However, the connection always drop cause it is calculating for days. I've sent the calc to background. Still calculating after 72 hours. I'm confused! My TP-Link that has a horrible hadrware, did that in a few hours. Now the ZyXEL is taking days? Need some help.
Try to transfer only the dh.pem after you initialize the PKI directory.
The other commands should be much faster, so even a low performance device should be able to run them successfully.
Otherwise, you can perform the whole PKI section on your PC and transfer the EASYRSA_PKI directory.