Set user certificate: your ca installed in step3.
Set CA certificate: your ca installed in step3. Set VPN server : IP of your OpenVPN server, without port. Settings>Wireless&networks>VPN settings>Add VPN>Add OpenVPN VPN Select client1.p12 and it will prompt for name (e.g. Settings>Location&security>Install from SD card
Dd wrt v24 sp2 openvpn install#
Just type "openssl pkcs12 -export -in client1.crt -inkey client1.key -certfile ca.crt -out client1.p12"Ģ) copy the file client1.p12 to sdcard in your phone, put client1.p12 in root folderģ) install certification on Android.
Dd wrt v24 sp2 openvpn windows#
Use a terminal on Linux or command window on Windows to merge these files. IMPORTANT : Need to synchronize the Android's clock to the same time zone of the OpenVPN server.ġ) you have to merge three files into a. 成功Tested with CM 7.2 內置openvpn client connection with DD-WRT OPENVPN server with firmware DD-WRT v24-sp2 (05/17/11) vpn-small - build 17084M NEWD Eko
Dd wrt v24 sp2 openvpn android#
China side Android client where you need to 破網翻墻 ) Note: this will create a c:\Program Files\OpenVPN\config\static.key file, you will can rename it as ta.key which is to be used in the later configuration steps.īoth server(DD-WRT) and clients ( Windows/Android/DD-WRT) need to do the corresponding configuration with this ta.key file to make connection.Ĭonfigure Android client ( e.g. If you want to implement TLS authentication, which may be helpful (not proved/tested yet) to resolve the issue "Great Firewall 升咗呢,全面封殺 OpenVPN"Ĭlick on "Start > Programs ->OpenVPN ->Utility-> Generate a static OpenVPN key" Now we will find our newly-generated keys and certificates in the keys subdirectory. Always use a unique common name for each client.ħ. Remember that for each client, make sure to type the appropriate Common Name when prompted, i.e. Two other queries require positive responses, "Sign the certificate? " and "1 out of 1 certificate requests certified, commit? ".
When the Common Name is queried, enter "server". In the example above, I used "OpenVPN-CA".Īs in the previous step, most parameters can be defaulted. The only parameter which must be explicitly entered is the Common Name. The final command (build-ca) will build the certificate authority (CA) certificate and key by invoking the interactive openssl command. Don't leave any of these parameters blank. Now edit the vars file (called vars.bat on Windows) and set the KEY_COUNTRY, KEY_PROVINCE, KEY_CITY, KEY_ORG, and KEY_EMAIL parameters. Run the following batch file to copy configuration files into place (this will overwrite any preexisting vars.bat and openssl.cnf files):ģ.
0 kommentar(er)
