Go and generate some certificates like this build-key-server server Once that’s done, you will have a functional self-signed CA. Configure PKIįollow the installation instructions for easy-rsa. Now you need to set up your PKI infrastructure and generate some certs. Reboot your router, and you’ll find a new interface tun0 waiting. Once that’s done, edit /etc/config/network and add a declaration of a new TUN interface config interface 'vpn' OpenWRT Configuration Package Installation and TUN Configurationįirst, run the following to install the required packages opkg update And lastly, I want to do this with certificates (and not shared secrets). I also want to have other devices (my phone) able to connect to my local network using VPN and have unrestricted access. What I want to do is to establish a VPN tunnel such that my VPS has some (highly restricted) access to my local network, and my local network has (nearly) unrestricted access to the VPS. It was pretty damned easy to get it all running and set it up as an in-place upgrade. I wound out replacing my existing router (which had a buggy NAT issue) with a TP-Link TL-WR1043ND running OpenWRT.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |