antisaWiki

User Tools

Site Tools

Trace:
wiki:openvpn_installation

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
wiki:openvpn_installation [2024/05/22 08:47] – add DNS info antisawiki:openvpn_installation [2025/03/03 16:15] (current) – [See also] add Revoke openvpn certificates antisa
Line 168: Line 168:
 In ///etc/dnsmasq.conf// add one or more upstream servers that dnsmasq will use for name resolution i.e. In ///etc/dnsmasq.conf// add one or more upstream servers that dnsmasq will use for name resolution i.e.
  
 +  listen-address=::1,127.0.0.1,10.8.0.1
 +  interface=tun0
   # Google's nameservers, for example   # Google's nameservers, for example
   server=8.8.8.8   server=8.8.8.8
   server=8.8.4.4   server=8.8.4.4
  
-and uncomment ''no-resolv''.+Adapt the listen-address IP to your VPN interface IP and interface as well and uncomment ''no-resolv''. 
 + 
 +In ///etc/openvpn/server/server.conf// make sure you push DNS and redirect gateway: 
 + 
 +  ... 
 +  push "redirect-gateway def1 bypass-dhcp" 
 +  push "dhcp-option DNS 10.13.13.1" 
 +  ... 
 +   
 +<WRAP center round info 60%> 
 +If you run into problems with DNS not going through VPN in Windows installed as a VM in Virtualbox for example, you will need to disable automatic metric on VPN interface and set it to lower then the default Ethernet or wifi. To check open the powershell and type ''nslookup example.org'' and you should get a response from VPN IP e.g. 10.8.0.1. 
 +{{ :wiki:screenshots:windows:windows_metric-2024-05-22_14-17.png?400 |}} 
 +</WRAP>
  
 ==== Resolve specific domains names to hard-coded IP ==== ==== Resolve specific domains names to hard-coded IP ====
Line 197: Line 211:
 #ZONE   INTERFACE       BROADCAST       OPTIONS #ZONE   INTERFACE       BROADCAST       OPTIONS
 net     eth0      detect          tcpflags,logmartians,nosmurfs,dhcp net     eth0      detect          tcpflags,logmartians,nosmurfs,dhcp
-vpn     tun0+vpn     tun0      detect
 </code> </code>
  
Line 259: Line 273:
 ====== See also ====== ====== See also ======
   * [[wiki:ovpn_file_example]]   * [[wiki:ovpn_file_example]]
 +  * [[wiki:vpn_troubleshooting|VPN troubleshooting]]
 +  * [[wiki:revoke_openvpn_certificates|Revoke openvpn certificates]]
 ====== References ====== ====== References ======
   * https://openvpn.net/community-resources/static-key-mini-howto/   * https://openvpn.net/community-resources/static-key-mini-howto/
Line 267: Line 283:
   * https://shorewall.org/OPENVPN.html   * https://shorewall.org/OPENVPN.html
   * https://openvpn.net/community-resources/reference-manual-for-openvpn-2-4/   * https://openvpn.net/community-resources/reference-manual-for-openvpn-2-4/
 +  * [[https://superuser.com/a/966833|windows metric issue]]
    
wiki/openvpn_installation.1716367669.txt.gz · Last modified: 2024/05/22 08:47 by antisa
Except where otherwise noted, content on this wiki is licensed under the following license: CC0 1.0 Universal
CC0 1.0 Universal Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki