====== Open VPN Client ======
===== Setting up a Linux OpenVPN client =====
You need to generate new keys (or use existing other client/username keys) for the new client/username

**On the server:**
<code>
cd easy-rsa
. vars
./build-key username
</code>

**On the client:**
  - Copy Keys\\ <code>Copy username.key, username.crt and ca.crt from server to /etc/openvpn/keys/.</code>

  - Edit\\ Edit /etc/openvpn/client.conf appropriately to set your configuration (just like server configuration, port, compression,..) and key paths. <code>cp -ai /usr/share/doc/openvpn-*/sample-config-files/roadwarrior-client.conf /etc/openvpn/client.conf
</code>
  - add to service<code>
chkconfig --level 2345 openvpn on
</code>
  - Start<code>
service openvpn start
</code>
  - Check\\ check /var/log/messages if things didn't work as expected


===== Setting up a Windows OpenVPN client =====

**On the server:**
<code>
cd easy-rsa
. vars
./build-key username
</code>

**On the client:**
  - Install the OpenVPN GUI or the stand-alone OpenVPN client.\\ http://openvpn.net/index.php/open-source/downloads.html
  - Copy keys to client\\ Copy username.crt, username.key, and ca.crt to C:\Program Files\OpenVPN\config\ on the client.
  - AAA\\ Drop roadwarrior-client.conf into C:\Program Files\OpenVPN\config\ as whatever.ovpn and edit appropriately.\\ Either use the GUI to start the connection, start the OpenVPN service manually, or set the OpenVPN service to start automatically.

Ideally the client should do some verification on the server key with tls-remote in the whatever.ovpn configuration file.


連結參考[[service:openvpn:openvpn_server_-_linux|OpenVPN Server - Linux]]