os:linux:tumbleweed:openvpn
OpenVPN
zypper in easy-rsa nano /etc/easy-rsa/vars openssl dhparam -out /etc/openvpn/dh2048.pem 2048 #Open incoming connections to the server, if you haven't already done it with yast firewall-cmd --zone=public --add-service openvpn #Add tun0 to trusted zone. Device name may vary depending on how many VPNs and other services like VMs you're running firewall-cmd --zone=trusted --add-interface tun0 #Enable masquerading firewall-cmd --zone=trusted --add-masquerade #Swap the eth0 for your device or ip that traffic goes out of that you need NAT'd. firewall-cmd --direct --passthrough ipv4 -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE #once you're happy it's working, save with firewall-cmd --runtime-to-permanent
os/linux/tumbleweed/openvpn.txt · Last modified: 2024/07/08 21:25 by ebaer