Differences

This shows you the differences between two versions of the page.

--- openvpn [2018/02/13 15:05] – skipidar
+++ openvpn [2020/12/27 20:35] (current) – external edit 127.0.0.1
@@ Line 50: / Line 50: @@
 ==== Configs ====
+The key "vpn.server.routing.private_network.0" is important to define which CIDR block will be routed through the VPN server.
 <code>
@@ Line 105: / Line 106: @@
   "vpn.server.routing.private_access": "nat",
   "vpn.tls_refresh.do_reauth": "true",
-  "vpn.tls_refresh.interval": "360"
+  "vpn.tls_refresh.interval": "360",
+  "vpn.server.routing.private_network.0": "21.1.0.0/16"
   },
   "_INTERNAL": {
@@ Line 143: / Line 145: @@
 bash sacli --user __DEFAULT__ --key "auth.ldap.0.users_base_dn" --value "OU=Users, OU=basic, DC=basic, DC=local" ConfigPut
 bash sacli --user __DEFAULT__ --key "auth.module.type" --value "ldap" ConfigPut
+bash sacli --user __DEFAULT__ --key "vpn.server.routing.private_network.0" --value "21.1.0.0/16" ConfigPut
 # apply the configs to the server
@@ Line 150: / Line 153: @@
 bash sacli ConfigQuery
 </code>
+==== Deploying via Cloudformation ====
+Use that template.
+The given AMI is suitable for the region us-east-1, Virginia.
+Depending on the region you will have to adopt the AMI.
+  * https://www.mikeapted.com/aws/2017/04/05/personal-vpn-aws/
+  * https://gist.github.com/skipidar/81e17478d55f014cc45cfc785ef9730b
+==== Configuring Acer Router ====
+{{https://lh3.googleusercontent.com/-N08V2NIa8uE/WxMIgRysspI/AAAAAAAAAKU/CHdbMvVRgf0Fz9J1-zd02y1JVR89xsoggCHMYCw/s0/2018-06-02_23-13-39.png}}
+  * Check the right protocol, here UDP. It must be open among on the server side
+Here we can see, that the router is using the UDP port and protocol, as configured on the server side:
+{{https://lh3.googleusercontent.com/-K33EMTIPEy4/WxMJEicisyI/AAAAAAAAAKc/z_ck0YQIiV43y5fZiGdxLzidfGu59eNGQCHMYCw/s0/2018-06-02_23-16-05.png}}