Commit f083f021 authored by Iulian Gheorghiu's avatar Iulian Gheorghiu

Update README.md

parent d9d5e66e
......@@ -222,7 +222,7 @@ Adjust the OpenVPN Configuration
Now that our files are in place, we can modify the server configuration file:
* sudo nano /etc/openvpn/server.conf
* sudo vi /etc/openvpn/server.conf
Basic Configuration
......@@ -230,7 +230,7 @@ First, find the HMAC section by looking for the tls-auth directive. Remove the "
/etc/openvpn/server.conf
tls-auth ta.key 0 # This file is secret
tls-auth ta.key 0 # This file is secret
key-direction 0
......@@ -323,7 +323,7 @@ First, we need to allow the server to forward traffic. This is fairly essential
We can adjust this setting by modifying the /etc/sysctl.conf file:
sudo nano /etc/sysctl.conf
sudo vi /etc/sysctl.conf
Inside, look for the line that sets net.ipv4.ip_forward. Remove the "#" character from the beginning of the line to uncomment that setting:
......@@ -391,7 +391,7 @@ Save and close the file when you are finished.
We need to tell UFW to allow forwarded packets by default as well. To do this, we will open the /etc/default/ufw file:
sudo nano /etc/default/ufw
sudo vi /etc/default/ufw
Inside, find the DEFAULT_FORWARD_POLICY directive. We will change the value from DROP to ACCEPT:
......@@ -501,7 +501,7 @@ Next, let's copy an example client configuration into our directory to use as ou
Open this new file in your text editor:
* nano ~/client-configs/base.conf
* vi ~/client-configs/base.conf
Inside, we need to make a few adjustments.
......@@ -589,7 +589,7 @@ Next, we will create a simple script to compile our base configuration with the
Create and open a file called make_config.sh within the ~/client-configs directory:
* nano ~/client-configs/make_config.sh
* vi ~/client-configs/make_config.sh
Inside, paste the following script:
......@@ -836,7 +836,7 @@ Transfer this file to the /etc/openvpn configuration directory:
Next, open the OpenVPN server configuration file:
* sudo nano /etc/openvpn/server.conf
* sudo vi /etc/openvpn/server.conf
At the bottom of the file, add the crl-verify option, so that the OpenVPN server checks the certificate revocation list that we've created each time a connection attempt is made:
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment