-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathhh_openvpn.txt
33 lines (22 loc) · 1006 Bytes
/
hh_openvpn.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
# Encrypt
tar cvfz - * | openssl enc -e -aes256 -out keys.tar.gz
# Decrypt
openssl enc -d -aes256 -in keys.tar.gz > decrypted.tar.gz
tar xvfz decrypte.tar.gz
#Abrir certificados con el openssl
openssl x509 -in todos.sedeb2b.com.crt -text -noout
# CA
#########################
# create CA — ca.crt and ca.key — which make up the public and private sides of an SSL certificate.
nano vars
/easyrsa build-ca nopass
# Certificate
# Creating the Server Certificate, Key, and request
./easyrsa gen-req server nopass
# Import request
./easyrsa import-req /tmp/server.req server
# sign the request by running the easyrsa script with the sign-req option, followed by the request type and the common name. The request type can either be client or server, so for the OpenVPN server’s certificate request, be sure to use the server request type:
./easyrsa sign-req server server
# Diffie-Hellman
# Create a strong Diffie-Hellman key to use during key exchange by typing:
./easyrsa gen-dh