侧边栏壁纸
博主头像
王工博主等级

  • 累计撰写 112 篇文章
  • 累计创建 0 个标签
  • 累计收到 32 条评论

目 录CONTENT

文章目录

openvpn

王工
王工
2023-06-27 / 0 评论 / 0 点赞 / 114 阅读 / 673 字

参考链接:https://cloud.tencent.com/developer/article/2142079?areaSource=102001.8&traceId=Sydqy0Hj7bqAK06rQyhie

docker run -v /home/docker-pgvpn/openvpn/conf:/etc/openvpn --rm chenji1506/openvpn:2.4.8 ovpn_genconfig -u udp://0.0.0.0
docker run -v /home/docker-pgvpn/openvpn/conf:/etc/openvpn --rm -it chenji1506/openvpn:2.4.8 ovpn_initpki
	Enter PEM pass phrase: 123456										# 输入私钥密码  openvpn2021.com
	Verifying - Enter PEM pass phrase: 123456							# 重新输入一次密码
	Common Name (eg: your user,host,or server name) [Easy-RSA CA]: 		# 输入一个CA名称。可以不用输入,直接回车
	Enter pass phrase for /etc/openvpn/pki/private/ca.key: 123456		# 输入刚才设置的私钥密码,完成后在输入一次
	
	
init-pki complete; you may now create a CA or requests.
Your newly created PKI dir is: /etc/openvpn/pki


Using SSL: openssl OpenSSL 1.1.1g  21 Apr 2020 (Library: OpenSSL 1.1.1d  10 Sep 2019)

Enter New CA Key Passphrase:
Re-Enter New CA Key Passphrase:
Generating RSA private key, 2048 bit long modulus (2 primes)
..................................+++++
.+++++
e is 65537 (0x010001)
Can't load /etc/openvpn/pki/.rnd into RNG
140558281825608:error:2406F079:random number generator:RAND_load_file:Cannot open file:crypto/rand/randfile.c:98:Filename=/etc/openvpn/pki/.rnd
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Common Name (eg: your user, host, or server name) [Easy-RSA CA]:

CA creation complete and you may now import and sign cert requests.
Your new CA certificate file for publishing is at:
/etc/openvpn/pki/ca.crt


Using SSL: openssl OpenSSL 1.1.1g  21 Apr 2020 (Library: OpenSSL 1.1.1d  10 Sep 2019)
Generating DH parameters, 2048 bit long safe prime, generator 2
This is going to take a long time
..+......................................................+.....+................................................................+...........................................................+..............................+...............+......................................................................................................................................................................................+.+......................................................................................................................................................................+......+.................................................................................+.......................................................................................................................+.......+....................................................+........................................................................................................................................................................................................................................................................................................+........................................................................+....................................................................................................+..........................................................+.............................................................................................................................................................................................................................................................+.................................................................................................................................................................................................................+.....................................................+........................................................+............+...............................................................................................................................................................................................................................................+......................................................................................................................................+.............+......................................................................................+..........................+..............................................................................................+................................+..................................................................................+.........................................................................+.............+...........................................................................................................................................+.+..........+...............................................................................................................................................+...........................+.................................................................................+.................+....................+...........+.......................................................................+........................................+........................................................+................................................................................................................................+...................................+..................................................................................................................................................+......................................................................................................................................................................................+..........................................+...................................................................+........................................................+........................................................................................................................................................................+.....+..............................................................................................................................................+..............................................................................................................................................................................................................................+...................................+....................................................................................................................................................+............................................................................................................................................................+..............+..+......................+..........................................+.......+...............................................................+.......................................................................................................................................................................................................................................++*++*++*++*

DH parameters of size 2048 created at /etc/openvpn/pki/dh.pem


Using SSL: openssl OpenSSL 1.1.1g  21 Apr 2020 (Library: OpenSSL 1.1.1d  10 Sep 2019)
Generating a RSA private key
..+++++
............................................................................................................................................+++++
writing new private key to '/etc/openvpn/pki/private/0.0.0.0.key.XXXXCpDPPi'
-----
Using configuration from /etc/openvpn/pki/safessl-easyrsa.cnf
Enter pass phrase for /etc/openvpn/pki/private/ca.key:
Check that the request matches the signature
Signature ok
The Subject's Distinguished Name is as follows
commonName            :ASN.1 12:'0.0.0.0'
Certificate is to be certified until Jun  4 04:44:16 2026 GMT (1080 days)

Write out database with 1 new entries
Data Base Updated

Using SSL: openssl OpenSSL 1.1.1g  21 Apr 2020 (Library: OpenSSL 1.1.1d  10 Sep 2019)
Using configuration from /etc/openvpn/pki/safessl-easyrsa.cnf
Enter pass phrase for /etc/openvpn/pki/private/ca.key:

An updated CRL has been created.
CRL file: /etc/openvpn/pki/crl.pem

	
docker run -v /home/docker-pgvpn/openvpn/conf:/etc/openvpn --rm -it chenji1506/openvpn:2.4.8 easyrsa build-client-full chenji nopass
docker run -v /home/docker-pgvpn/openvpn/conf:/etc/openvpn --rm chenji1506/openvpn:2.4.8 ovpn_getclient chenji > /home/docker-pgvpn/openvpn/conf/chenji.ovpn


#!/bin/bash
read -p "please your username: " NAME
docker run -v /home/docker-pgvpn/openvpn/conf:/etc/openvpn --rm -it chenji1506/openvpn:2.4.8 easyrsa build-client-full $NAME nopass
docker run -v /home/docker-pgvpn/openvpn/conf:/etc/openvpn --rm chenji1506/openvpn:2.4.8 ovpn_getclient $NAME > /home/docker-pgvpn/openvpn/conf/"$NAME".ovpn
docker restart openvpn
0
  1. qrcode alipay
  2. qrcode weixin
版权归属: 王工
本文链接: https://301788dn53.zicp.vip:85/archives/123
许可协议: 本文使用《署名-非商业性使用-相同方式共享 4.0 国际 (CC BY-NC-SA 4.0)》协议授权

评论区