User Tools
chromebooks:openvpn
Differences
This shows you the differences between two versions of the page.
| Next revision | Previous revision Last revision Both sides next revision | ||
|
chromebooks:openvpn [2016/12/14 09:10] tschulz created |
chromebooks:openvpn [2016/12/14 11:55] tschulz [Create Users] |
||
|---|---|---|---|
| Line 3: | Line 3: | ||
| ===== PFSense Certificates ===== | ===== PFSense Certificates ===== | ||
| ==== Create CA ==== | ==== Create CA ==== | ||
| + | {{ :chromebooks:cert_ca_crop.png?200|}} | ||
| - Login to PFsense | - Login to PFsense | ||
| - go to **System -> Certificate Manager** | - go to **System -> Certificate Manager** | ||
| Line 11: | Line 12: | ||
| - Click on **Export CA** (blue star seal icon) | - Click on **Export CA** (blue star seal icon) | ||
| - Save the CA certificate to a secure location we will need it later | - Save the CA certificate to a secure location we will need it later | ||
| + | |||
| ==== Create Server Cert ==== | ==== Create Server Cert ==== | ||
| + | {{ :chromebooks:cert_server_crop.png?200|}} | ||
| - While in **System -> Certificate Manager** click on the **Certificates** tab | - While in **System -> Certificate Manager** click on the **Certificates** tab | ||
| - Click on the **+Add** button | - Click on the **+Add** button | ||
| Line 20: | Line 23: | ||
| - Fill out the remaining fields | - Fill out the remaining fields | ||
| - Finally click on **Save** | - Finally click on **Save** | ||
| + | |||
| ===== OpenVPN Server Setup ===== | ===== OpenVPN Server Setup ===== | ||
| + | {{ :chromebooks:server_settings.png?200|}} | ||
| - Go to **VPN -> OpenVPN** | - Go to **VPN -> OpenVPN** | ||
| - While on the **Servers** tab click on the **+Add** button | - While on the **Servers** tab click on the **+Add** button | ||
| - | - | + | - Change **Server Mode** to **Remote Access (User Auth)** |
| + | - Change **Protocol** to **UDP** | ||
| + | - Change **Device mode** to **tun** | ||
| + | - Uncheck the box for **Enable authentication for TLS Packets** | ||
| + | - Under **Peer Certificate Authority** select the CA we created in the first section | ||
| + | - Under **Server Certificate** select the server certificate we created | ||
| + | - Change the **Encryption Algorithm** to **BF-CBC (128 bit)** | ||
| + | - Verify **Auth Digest** is set to **SHA1 (160-bit)** | ||
| + | - Under **IPv4 Tunnel Network** enter a unused network like **192.168.132.0/24** | ||
| + | - Under **IPv4 Local Network** enter the network of your local LAN network | ||
| + | - Verify **Compression** is set to **No Prefernce** | ||
| + | - Finally click on **Save** | ||
| + | ===== Create Users ===== | ||
| + | - Go to **System -> User Manager** | ||
| + | - Under the **Users** tab click on **+Add** | ||
| + | - Enter a **Username** and **Password** | ||
| + | - Click on Save | ||
| + | |||
| + | * Remember the username and password we will use them to configure the openvpn client on the ChromeOS device | ||
chromebooks/openvpn.txt · Last modified: 2016/12/14 14:10 by tschulz
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
