1
0
Fork 0
mirror of synced 2024-12-22 06:51:07 -05:00

minor updates

This commit is contained in:
graysky 2017-06-23 17:25:31 -04:00
parent a506341991
commit cb19b7ffec
2 changed files with 21 additions and 9 deletions

View file

@ -1,5 +1,7 @@
## Overview
A simple shell script that creates OpenVPN compatible tunnel profiles in the unified file format. Tested on iOS version 1.0.7 build 199 of OpenVPN Connect and likely works with the Android app as well as the official Linux client.
A simple shell script that creates OpenVPN compatible tunnel profiles in the unified file format. Tested on:
* Linux OpenVPN version 2.4.3
* iOS version 1.1.1 build 212 of OpenVPN Connect
## Usage
Invoke the script with 5 tokens and the profile is outputted to stdout.
@ -11,12 +13,20 @@ Invoke the script with 5 tokens and the profile is outputted to stdout.
6. Optionally define a port number (defaults to 1194 if left blank).
7. Optionally define a protocol (defaults to udp if left blank).
### Example
### Example (run as root) using all 7 augments to setup a profile working port 443 using TCP
```
sudo ./ovpngen titty.nipples.org /etc/openvpn/server/ca.crt /etc/easy-rsa/pki/signed/client.crt /etc/easy-rsa/pki/private/client.key /etc/openvpn/server/ta.key > iphone.ovpn
CLIENT=foo
./ovpngen nipple.titty.org \
/etc/openvpn/server/ca.crt \
/etc/easy-rsa/pki/signed/$CLIENT.crt \
/etc/easy-rsa/pki/private/$CLIENT.key \
/etc/openvpn/server/ta.key \
443 \
tcp > $CLIENT.ovpn
```
The resulting myprofile.ovpn can be edited if desired.
The resulting foo.ovpn can be edited if desired.
### Credit
Majority of the credit goes to the script's original author, [trovao](https://github.com/trovao). His version can be found [here](https://gist.github.com/trovao/18e428b5a758df24455b).

12
ovpngen
View file

@ -20,11 +20,13 @@ usage() {
EOF
echo
echo 'For example:'
echo ' ovpngen titty.nipples.org \'
echo
echo 'CLIENT=jason'
echo "$0 nipple.titty.org \\"
echo ' /etc/openvpn/server/ca.crt \'
echo ' /etc/easy-rsa/pki/signed/client.crt \'
echo ' /etc/easy-rsa/pki/private/client.key \'
echo ' /etc/openvpn/server/ta.key > iphone.ovpn'
echo ' /etc/easy-rsa/pki/signed/$CLIENT.crt \'
echo ' /etc/easy-rsa/pki/private/$CLIENT.key \'
echo ' /etc/openvpn/server/ta.key > $CLIENT.ovpn'
exit 0
}
@ -62,7 +64,7 @@ persist-key
persist-tun
verb 3
# optionally uncomment and change to exactly match the values specified
# in /etc/openvpn/server.conf
# in /etc/openvpn/server/server.conf
#cipher AES-256-CBC
#auth SHA512
comp-lzo