vyos/vyos-documentation
1
0
Fork 0
mirror of https://github.com/vyos/vyos-documentation.git synced 2025-10-26 08:41:46 +01:00
Code Issues Packages Projects Releases Wiki Activity

openvpn: add link to basic PKI setup in knowledge-base

Browse Source
This commit is contained in:
currite 2019-12-12 19:18:41 +01:00
parent 14bde748e9
commit 75d7d6a31b
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
docs/vpn/openvpn.rst
View File

@ -183,8 +183,8 @@ Server
====== ======
Multi-client server is the most popular OpenVPN mode on routers. It always uses Multi-client server is the most popular OpenVPN mode on routers. It always uses
x.509 authentication and therefore requires a PKI setup. This guide assumes you x.509 authentication and therefore requires a PKI setup. This guide assumes
have already setup a PKI and have a CA certificate, a server certificate and `you have already setup a PKI`_ and have a CA certificate, a server certificate and
key, a certificate revocation list, a Diffie-Hellman key exchange parameters key, a certificate revocation list, a Diffie-Hellman key exchange parameters
file. You do not need client certificates and keys for the server setup. file. You do not need client certificates and keys for the server setup.
@ -254,6 +254,7 @@ internally, so we need to create a route to the 10.23.0.0/20 network ourselves:
set protocols static interface-route 10.23.0.0/20 next-hop-interface vtun10 set protocols static interface-route 10.23.0.0/20 next-hop-interface vtun10
.. _`you have already setup a PKI`: https://support.vyos.io/en/kb/articles/using-easy-rsa-to-generate-x-509-certificates-and-keys-2
Client Authentication Client Authentication
--------------------- ---------------------