Difference between revisions of "Connecting to the office network remotely from your home via VPN (OpenVPN) using RUTX"
(2 intermediate revisions by the same user not shown) | |||
Line 2: | Line 2: | ||
<tr> | <tr> | ||
<th width="325;" style="border-bottom: 1px solid white;"></th> | <th width="325;" style="border-bottom: 1px solid white;"></th> | ||
− | <th rowspan="2;" width="820;" style="border-bottom: 1px solid white;">[[File:Networking rutxxx configuration openvpn topology v1.png|alt=|border|right|750x750px]]</th> | + | <th rowspan="2;" width="820;" style="border-bottom: 1px solid white;">[[File:Networking rutxxx configuration openvpn topology v1.png|alt=|border|class=tlt-border|right|750x750px]]</th> |
</tr> | </tr> | ||
<tr> | <tr> | ||
Line 32: | Line 32: | ||
* And in the last section '''<key></key>''' paste whole private key from '''/easy-rsa/pki/private/"your_client_name".key''' | * And in the last section '''<key></key>''' paste whole private key from '''/easy-rsa/pki/private/"your_client_name".key''' | ||
*One more thing to change in your .ovpn file is to change the IP address to your router's '''public IP address''' | *One more thing to change in your .ovpn file is to change the IP address to your router's '''public IP address''' | ||
− | [[File:Networking rutxxx configuration openvpn certification file.jpg|alt=|border]] | + | [[File:Networking rutxxx configuration openvpn certification file.jpg|alt=|border|class=tlt-border]] |
*Now you can '''Save''' and '''Import''' your '''.ovpn''' file to the OpenVPN client by right-clicking on OpenVPN GUI in the hidden icons tray and navigating to '''Import → Import File'''. | *Now you can '''Save''' and '''Import''' your '''.ovpn''' file to the OpenVPN client by right-clicking on OpenVPN GUI in the hidden icons tray and navigating to '''Import → Import File'''. | ||
− | [[File:Networking rutxxx configuration certificate import.jpg|alt=|border]] | + | [[File:Networking rutxxx configuration certificate import.jpg|alt=|border|class=tlt-border]] |
Do not connect yet to your VPN client, we still have to configure the server. | Do not connect yet to your VPN client, we still have to configure the server. | ||
Line 108: | Line 108: | ||
If everything was configurated correctly your OpenVPN server should be '''Active''': | If everything was configurated correctly your OpenVPN server should be '''Active''': | ||
− | [[File:Networking rutxxx configuration ovpn active state.jpg|alt=|border|1008x1008px]] | + | [[File:Networking rutxxx configuration ovpn active state.jpg|alt=|border|1008x1008px|class=tlt-border]] |
Now let's try to connect from a '''client''' to the '''server'''. | Now let's try to connect from a '''client''' to the '''server'''. | ||
Line 114: | Line 114: | ||
On your Windows machine right-click on '''OpenVPN GUI''' '''→''' Select your client → Press Connect | On your Windows machine right-click on '''OpenVPN GUI''' '''→''' Select your client → Press Connect | ||
− | [[File:Networking rutxxx configuration openvpn connect to the client.jpg|alt=|border]] | + | [[File:Networking rutxxx configuration openvpn connect to the client.jpg|alt=|border|class=tlt-border]] |
If the connection was successful then you will get the following notification: | If the connection was successful then you will get the following notification: | ||
− | [[File:Networking rutxxx configuration successful connection.jpg|alt=|border]] | + | [[File:Networking rutxxx configuration successful connection.jpg|alt=|border|class=tlt-border]] |
To test if the connection is working properly on your Windows machine open '''CMD''' and type ping '''192.168.15.1''' (server's VPN IP) you should get a similar response: | To test if the connection is working properly on your Windows machine open '''CMD''' and type ping '''192.168.15.1''' (server's VPN IP) you should get a similar response: | ||
− | [[File:Networking rutxxx configuration cmd ping to the server.jpg|alt=|border]] | + | [[File:Networking rutxxx configuration cmd ping to the server.jpg|alt=|border|class=tlt-border]] |
Revision as of 08:24, 10 May 2022
|
Configuration overview and prerequisites
Prerequisites:
- One RUTX router of any type
- A Public Static or Public Dynamic IP addresses
- At least one end device with Windows 10
The topology above depicts the OpenVPN scheme. - The router with the Public IP address (RUTX11) acts as the OpenVPN server and the Windows 10 device acts as a client. OpenVPN connects the networks of RUTX11 and Windows 10 clients.
When the scheme is realized, home workers will be able to reach the corporation’s internal network with all internal systems, allowing working from home to be possible.
Configuring OpenVPN from the client-side
TLS Certificates
- Firstly generate TLS certificates on your Windows Computer, you can find instructions on how to do it here.
- After you've successfully generated TLS certificates you will need to create a .ovpn file for storing client configurations. Simply open any text editor and follow this tutorial.
- Important: in your .ovpn file certificates you will need to copy are:
- In <ca> </ca> paste whole certificate from /easy-rsa/pki/ca.crt
- IN <cert></cert> paste whole certificate from /easy-rsa/pki/issued/"your_client_name".crt
- And in the last section <key></key> paste whole private key from /easy-rsa/pki/private/"your_client_name".key
- One more thing to change in your .ovpn file is to change the IP address to your router's public IP address
- Now you can Save and Import your .ovpn file to the OpenVPN client by right-clicking on OpenVPN GUI in the hidden icons tray and navigating to Import → Import File.
Do not connect yet to your VPN client, we still have to configure the server.
Configuring OpenVPN from the server-side
Login to the router's WebUI and navigate to the Services → VPN → OPENVPN page and do the following:
|
|
|
Connecting to the OpenVPN server
If everything was configurated correctly your OpenVPN server should be Active:
Now let's try to connect from a client to the server.
On your Windows machine right-click on OpenVPN GUI → Select your client → Press Connect
If the connection was successful then you will get the following notification:
To test if the connection is working properly on your Windows machine open CMD and type ping 192.168.15.1 (server's VPN IP) you should get a similar response: