版权声明:本文为博主原创文章,未经博主允许不得转载。 https://blog.csdn.net/MaxWoods/article/details/89446906
安装环境依赖:
yum install install gcc gcc-c++ libstdc++-devel autoconf automake libtool pam-devel克隆OpenVPN源代码:
git clone https://github.com/OpenVPN/openvpn.git配置:
./configure --prefix=/usr/local/OpenVPN --disable-lzo编译安装:
make && make install软连接:
ln -s /usr/local/OpenVPN/sbin/openvpn /usr/sbin/openvpn克隆easy-rsa源代码:
git clone https://github.com/OpenVPN/easy-rsa.git到eay-rsa的easyrsa3目录,拷贝配置:
cp vars.example vars修改配置下面对应部分:
set_var EASYRSA_REQ_COUNTRY "CN"
set_var EASYRSA_REQ_PROVINCE "HUBEI"
set_var EASYRSA_REQ_CITY "WUHAN"
set_var EASYRSA_REQ_ORG "JOYCODE"
set_var EASYRSA_REQ_EMAIL "[email protected]"
set_var EASYRSA_REQ_OU "Max Woods' OpenVPN"初始化:
./easyrsa init-pki生成根证书:
./easyrsa build-ca生成服务器证书:
./easyrsa gen-req server nopass服务器证书签名:
./easyrsa sign server server创建Diffie-Hellman:
./easyrsa gen-dh创建客户端证书请求:
/easyrsa gen-req Ops客户端证书导入:
./easyrsa import-req /root/client/easy-rsa/easyrsa3/pki/reqs/Ops.req Ops
客户端证书签名:
./easyrsa sign client Ops参考: