Difference between revisions of "Instalasi OpenVPN di Windows"

From OnnoWiki
Jump to navigation Jump to search
 
(3 intermediate revisions by the same user not shown)
Line 9: Line 9:
  
  
Jalankan / Klik
+
* Jalankan / Klik openvpn-2.0.9.gui-1.0.3-install.exe. Silahkan dilihat [[Capture Screen Proses Instalasi OpenVPN di Windows]], untuk lebih jelasnya apa yang terjadi pada saat instalasi.
 +
* Masuk ke directory C:\Program Files\OpenVPN\config
 +
* Buat directory C:\Program Files\OpenVPN\config\keys
 +
* Copy file ca.crt, user-client.crt, dan user-client.key ke C:\Program Files\OpenVPN\config\keys
 +
* Buat file text client.ovpn di Folder C:\Program Files\OpenVPN\config. Isinya adalah,
  
  openvpn-2.0.9.gui-1.0.3-install.exe
+
  # Specify that we are a client and that we
 +
# will be pulling certain config file directives
 +
# from the server.
 +
client
  
Silahkan dilihat [[Capture Screen Proses Instalasi OpenVPN di Windows]], untuk lebih jelasnya
+
# Use the same setting as you are using on
apa yang terjadi pada saat instalasi.
+
# the server.
 +
# On most systems, the VPN will not function
 +
# unless you partially or fully disable
 +
# the firewall for the TUN/TAP interface.
 +
dev tap
 +
; dev tun
  
 +
# Windows needs the TAP-Win32 adapter name
 +
# from the Network Connections panel
 +
# if you have more than one.  On XP SP2,
 +
# you may need to disable the firewall
 +
# for the TAP adapter.
 +
; dev-node MyTap
  
 +
# Are we connecting to a TCP or
 +
# UDP server?  Use the same setting as
 +
# on the server.
 +
;proto tcp
 +
proto udp
 +
 +
# The hostname/IP and port of the server.
 +
# You can have multiple remote entries
 +
# to load balance between the servers.
 +
;remote my-server-1 1194
 +
;remote my-server-2 1194
 +
remote 192.168.0.3 1194
 +
 +
# Choose a random host from the remote
 +
# list for load-balancing.  Otherwise
 +
# try hosts in the order specified.
 +
;remote-random
 +
 +
# Keep trying indefinitely to resolve the
 +
# host name of the OpenVPN server.  Very useful
 +
# on machines which are not permanently connected
 +
# to the internet such as laptops.
 +
resolv-retry infinite
 +
 +
# Most clients don't need to bind to
 +
# a specific local port number.
 +
nobind
 +
 +
# Try to preserve some state across restarts.
 +
persist-key
 +
persist-tun
 +
 +
# If you are connecting through an
 +
# HTTP proxy to reach the actual OpenVPN
 +
# server, put the proxy server/IP and
 +
# port number here.  See the man page
 +
# if your proxy server requires
 +
# authentication.
 +
;http-proxy-retry # retry on connection failures
 +
;http-proxy [proxy server] [proxy port #]
 +
 +
# Wireless networks often produce a lot
 +
# of duplicate packets.  Set this flag
 +
# to silence duplicate packet warnings.
 +
;mute-replay-warnings
 +
 +
# SSL/TLS parms.
 +
# See the server config file for more
 +
# description.  It's best to use
 +
# a separate .crt/.key file pair
 +
# for each client.  A single ca
 +
# file can be used for all clients.
 +
ca keys/ca.crt
 +
cert keys/onno.crt
 +
key keys/onno.key
 +
 +
# Verify server certificate by checking
 +
# that the certicate has the nsCertType
 +
# field set to "server".  This is an
 +
# important precaution to protect against
 +
# a potential attack discussed here:
 +
#  http://openvpn.net/howto.html#mitm
 +
#
 +
# To use this feature, you will need to generate
 +
# your server certificates with the nsCertType
 +
# field set to "server".  The build-key-server
 +
# script in the easy-rsa folder will do this.
 +
;ns-cert-type server
 +
 +
# If a tls-auth key is used on the server
 +
# then every client must also have the key.
 +
;tls-auth ta.key 1
 +
 +
# Select a cryptographic cipher.
 +
# If the cipher option is used on the server
 +
# then you must also specify it here.
 +
;cipher x
 +
;cipher AES-128-CBC
 +
 +
# Enable compression on the VPN link.
 +
# Don't enable this unless it is also
 +
# enabled in the server config file.
 +
# comp-lzo
 +
 +
# Set log file verbosity.
 +
verb 3
 +
 +
# Silence repeating messages
 +
;mute 20
 +
 +
 +
* Pastikan Windows Firewall dimatikan
 +
* Klik Kanan bawah OpenVPN GUI -> Connect
  
  
Line 24: Line 135:
  
 
* [[Capture Screen Proses Instalasi OpenVPN di Windows]]
 
* [[Capture Screen Proses Instalasi OpenVPN di Windows]]
 +
* [[Instalasi OpenVPN]]

Latest revision as of 17:14, 24 March 2008

Download OpenVPN di Windows dari 

http://openvpn.se/download.html

File yang dapat di download 

http://openvpn.se/files/install_packages/openvpn-2.0.9-gui-1.0.3-install.exe
http://openvpn.se/files/binary/openvpn-gui-1.0.3.exe


  • Jalankan / Klik openvpn-2.0.9.gui-1.0.3-install.exe. Silahkan dilihat Capture Screen Proses Instalasi OpenVPN di Windows, untuk lebih jelasnya apa yang terjadi pada saat instalasi.
  • Masuk ke directory C:\Program Files\OpenVPN\config
  • Buat directory C:\Program Files\OpenVPN\config\keys
  • Copy file ca.crt, user-client.crt, dan user-client.key ke C:\Program Files\OpenVPN\config\keys
  • Buat file text client.ovpn di Folder C:\Program Files\OpenVPN\config. Isinya adalah,
# Specify that we are a client and that we
# will be pulling certain config file directives
# from the server.
client

# Use the same setting as you are using on
# the server.
# On most systems, the VPN will not function
# unless you partially or fully disable
# the firewall for the TUN/TAP interface.
dev tap
; dev tun

# Windows needs the TAP-Win32 adapter name
# from the Network Connections panel
# if you have more than one.  On XP SP2,
# you may need to disable the firewall
# for the TAP adapter.
; dev-node MyTap 

# Are we connecting to a TCP or
# UDP server?  Use the same setting as
# on the server.
;proto tcp
proto udp 

# The hostname/IP and port of the server.
# You can have multiple remote entries
# to load balance between the servers.
;remote my-server-1 1194
;remote my-server-2 1194
remote 192.168.0.3 1194

# Choose a random host from the remote
# list for load-balancing.  Otherwise
# try hosts in the order specified.
;remote-random

# Keep trying indefinitely to resolve the
# host name of the OpenVPN server.  Very useful
# on machines which are not permanently connected
# to the internet such as laptops.
resolv-retry infinite

# Most clients don't need to bind to
# a specific local port number.
nobind

# Try to preserve some state across restarts.
persist-key
persist-tun 

# If you are connecting through an
# HTTP proxy to reach the actual OpenVPN
# server, put the proxy server/IP and
# port number here.  See the man page
# if your proxy server requires
# authentication.
;http-proxy-retry # retry on connection failures
;http-proxy [proxy server] [proxy port #] 

# Wireless networks often produce a lot
# of duplicate packets.  Set this flag
# to silence duplicate packet warnings.
;mute-replay-warnings

# SSL/TLS parms.
# See the server config file for more
# description.  It's best to use
# a separate .crt/.key file pair
# for each client.  A single ca
# file can be used for all clients.
ca keys/ca.crt
cert keys/onno.crt
key keys/onno.key

# Verify server certificate by checking
# that the certicate has the nsCertType
# field set to "server".  This is an
# important precaution to protect against
# a potential attack discussed here:
#  http://openvpn.net/howto.html#mitm
#
# To use this feature, you will need to generate
# your server certificates with the nsCertType
# field set to "server".  The build-key-server
# script in the easy-rsa folder will do this.
;ns-cert-type server

# If a tls-auth key is used on the server
# then every client must also have the key.
;tls-auth ta.key 1

# Select a cryptographic cipher.
# If the cipher option is used on the server
# then you must also specify it here.
;cipher x
;cipher AES-128-CBC

# Enable compression on the VPN link.
# Don't enable this unless it is also
# enabled in the server config file.
# comp-lzo

# Set log file verbosity.
verb 3

# Silence repeating messages
;mute 20


  • Pastikan Windows Firewall dimatikan
  • Klik Kanan bawah OpenVPN GUI -> Connect



Pranala Menarik

Retrieved from "https://onnocenter.or.id/wiki/index.php?title=Instalasi_OpenVPN_di_Windows&oldid=3081"