OpenVPN : Configure VPN Client2018/11/22 |
Configure VPN Client. This example is on Windows 10.
This example is based on the environment like follows.
By settings of OpenVPN Server/Client, tun interface will be configured automatically and when connecting with VPN from Client to Server, Client can access to the the local network of the Server.
On this example, it needs to set IP Masquerading on Router, too.
+----------------------+ | [ OpenVPN Server ] |192.168.100.1 | dlp.srv.world +--------+ | |tun | +-----------+----------+ | eth0|10.0.0.29 | | | | Local Network | 10.0.0.1| | +------+-----+ | -------| Router |-------------|----- +------+-----+ | | | | Internet | --------------+-------------------|----- | | | Local Network | 192.168.0.100| | +-----------+----------+ | | |tun | | VPN Client +--------+ | |192.168.100.x +----------------------+ |
[1] |
Download OpenVPN client from the site below and install it.
⇒ https://openvpn.net/community-downloads/ |
[2] | After installing OpenVPN client, copy the file [client.ovpn] which is under the [C:Program FilesOpenVPNsample-config] into [C:Program FilesOpenVPNnfig] and rename it to the name which you named when created client certificates on the VPN Server. Furthermore, copy files [ca.crt], [client1.crt], [client1.key] which you created on the server to the same folder like follows. |
[3] | Open the file [client.ovpn] (before renaming) with text editor like memopad and edit like follows. |
# it's OK with default
client
# protocol which you specified in the server's config
;proto tcp proto udp
# OpenVPN server's global IP and port (replace to your own environment)
remote 172.16.2.1 1194
# retry resolving
resolv-retry infinite
# no bind for local port
nobind
# enable persist options
persist-key persist-tun
# path for certificates
ca ca.crt cert client1.crt key client1.key
# path of TLS-Auth key
tls-auth ta.key 1
# enable compress
# log levelcomp-lzo verb 3 |
[4] | Start [OpenVPN GUI] with admin priviledge. |
[5] | Click OpenVPN icon which is in taskbar with right button and select [connect]. |
[6] | After connecting, the color of icon turns green. |
[7] | After connecting, TAP adapter is added like follows. |
[8] | After connecting, it's possible to access to OpenVPN server's local address. |