From owner-freebsd-questions@FreeBSD.ORG Tue May 10 22:31:28 2011 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 302901065677 for ; Tue, 10 May 2011 22:31:28 +0000 (UTC) (envelope-from btillman99@yahoo.com) Received: from nm12.bullet.mail.bf1.yahoo.com (nm12.bullet.mail.bf1.yahoo.com [98.139.212.171]) by mx1.freebsd.org (Postfix) with SMTP id C79FF8FC1A for ; Tue, 10 May 2011 22:31:27 +0000 (UTC) Received: from [98.139.212.153] by nm12.bullet.mail.bf1.yahoo.com with NNFMP; 10 May 2011 22:31:27 -0000 Received: from [98.139.212.237] by tm10.bullet.mail.bf1.yahoo.com with NNFMP; 10 May 2011 22:31:27 -0000 Received: from [127.0.0.1] by omp1046.mail.bf1.yahoo.com with NNFMP; 10 May 2011 22:31:27 -0000 X-Yahoo-Newman-Property: ymail-3 X-Yahoo-Newman-Id: 59073.93654.bm@omp1046.mail.bf1.yahoo.com Received: (qmail 17222 invoked by uid 60001); 10 May 2011 22:31:26 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1305066686; bh=CsIUCora+tcwjl2+u8JsJEKLcmGACiR02XSLDbYY6EU=; h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=KeDDj0rrxR5ML0AyYEIdCSbHg4HoKFrt4aAwVw6/dSxPrGq5aetxddyQM6TC/8oPGa6FeHg0UPVhFOThtsmgxsRXVjElfHS4EPlfM0SbbJ1/cYVWhRrsCq/qWMEdnMsBBQyknLBG2rUjijKSK/uNEXbnlarkWLqzGttkvgBfJd0= DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=HUZuUEpzx/wSzXHCSIJNnPgVchGTbH8B0xtFIbnrRiLhU15JVqYzw8x0eI17WNc4klp2S1B1lZfM0XRIQOCr9yXkP5Y+59lIHBcNiO0Wd+tZ9h+w07tljBXcWg0opYGbmAyMTop3e4czUHKUzBIrGd44/IbS3UFKfzxbwZaPA4A=; Message-ID: <14901.7464.qm@web36505.mail.mud.yahoo.com> X-YMail-OSG: C19GPf0VM1lFhcQlX8NSexRdP8BKYvEuY3Zk1ZtBYwDHQvg QwtL2mkKkGDQvvYM8qDgCJnLBsKg27zlQGml6CUNUhqrIaTk72lCuRUkhjvb IYoEVpFe8KsFkUkqYQSG9TwsxIHcpRqbRtk7_psBI3ETNTRg1x2iywAWS6nw Qby_.7MbWnWinS7d0fsDiop0fENjW39v1qS38LxnN_HEniQ0JPeZNQ57DTjS h4iDU1cDZQYGRXPv_YgXXQEznAjTRD9R27W0yjHPMBZZAdtwPL8BjmI0vQGO O4L_oR6R4j_P0dZdjgb1eE9swo7saLbCBA4fpISoKlFxsdvC_v_wi.3bjFbz cMo8CeJplnO67xQKZE54ObNeUelGY6RY9pWZulvErk.ylV8RgV0OEsUL_7Jt aATX1cK2liBn6rcrEdjo_46K8mvl33B3NzoSh0ImqFgOewUH6e8SPNKofk1n PfFN0hW0tFQb5qtIgwcEMfVQ9aMqqOoH9mNHC0KSHSnb4EQ-- Received: from [98.242.233.74] by web36505.mail.mud.yahoo.com via HTTP; Tue, 10 May 2011 15:31:25 PDT X-Mailer: YahooMailRC/559 YahooMailWebService/0.8.110.299900 References: <4DC97839.6010108@mage.hu> <4DC982B2.6090303@mage.hu> <4DC98B05.7080503@mage.hu> <20110510221009.49a1c6ea@ukr.net> <180587.39161.qm@web36506.mail.mud.yahoo.com> <947562.11016.qm@web36501.mail.mud.yahoo.com> Date: Tue, 10 May 2011 15:31:25 -0700 (PDT) From: Bill Tillman To: Chuck Swiger In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-questions@freebsd.org Subject: Re: OpenVPN Setup X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 May 2011 22:31:28 -0000 One more thing. I am going to need the Windows Client but I don't seem to f= ind =0Athat at the OpenVPN site, only the full install which I assume insta= lls the =0Aserver as well as the client. Or am I missing the link to get ju= st the client =0Ainstall. I would like to keep the overhead to a minimum.= =0A=0A=0A=0A=0A________________________________=0AFrom: Chuck Swiger =0ATo: Bill Tillman =0ACc: freebsd-questio= ns@freebsd.org=0ASent: Tue, May 10, 2011 6:02:13 PM=0ASubject: Re: OpenVPN = Setup=0A=0AOn May 10, 2011, at 2:50 PM, Bill Tillman wrote:=0A>> OpenVPN's = site provides fine documentation:=0A>> =0A>>=C2=A0 http://openvpn.net/index= .php/open-source/documentation.html=0A>>=C2=A0 =0A>>http://openvpn.net/inde= x.php/open-source/documentation/miscellaneous/78-static-key-mini-howto.html= =0A>>=0A[ ... ]=0A> I'm working through the docs you referenced in the HOWT= O and it says:=0A> Next, initialize the PKI. On Linux/BSD/Unix:=0A> =0A> . = ./vars=0A> ./clean-all=0A> ./build-ca=0A=0AIf you're trying to setup a CA f= or PKI, then you're not following the static key =0Adocument:=0A=0A"Static = Key Mini-HOWTO=0A=0AIntroduction=0A=0AStatic key configurations offer the s= implest setup, and are ideal for =0Apoint-to-point VPNs or proof-of-concept= testing.=0A=0AStatic Key advantages=0A=0A=C2=A0=C2=A0=C2=A0 =E2=80=A2 Simp= le Setup=0A=C2=A0=C2=A0=C2=A0 =E2=80=A2 No X509 PKI (Public Key Infrastruct= ure) to maintain"=0A=0A> the vars file is not executable and from what I se= e in the Makefile they want =0A>to chmod it to 644....I tried /bin/sh ./var= s and it seemed to work but then when =0A>I run ./clean-all which is execut= able I get=0A> Please source the vars script first (i.e. ". ./vars")=0A=0AY= es.=C2=A0 The directions assume you are running /bin/sh (or Bourne-compatib= le shells =0Abash, ksh, zsh, etc).=0A=0ADo that, and ". ./vars" will work.= =C2=A0 Running "/bin/sh ./vars" also works, but is =0Auseless because it ch= anges the variables in a subshell which exits once it =0Afinishes processin= g the ./vars file.=0A=0A> Make sure you have edited it to reflect your conf= iguration.=0A> I'm stumped as this appears to be something Linux will handl= e but not =0A>FreeBSD....any suggestions?=0A=0AYes, follow the directions.= =C2=A0 OpenVPN works fine on FreeBSD.=0A=0ARegards,=0A-- =0A-Chuck