(05/01/2020, 10:21)Tiger Ha scritto: Con quale app ti connetti in vpn su cellulare e pc? Puoi postare il contenuto del file:
sudo nano /etc/openvpn/easy-rsa/pki/Default.txt
Omettendo nome del name server se vuoi
E di
sudo nano /etc/openvpn/server.conf
CONTENUTO DEL FILE : /etc/openvpn/easy-rsa/pki/Default.txt
client
dev tun
proto udp
remote my.duckdns.org PORT
resolv-retry infinite
nobind
persist-key
persist-tun
remote-cert-tls server
tls-version-min 1.2
verify-x509-name raspberrypi_06XXX92-5eXX-46XX-aX18-78XXXXXXXXff name
cipher AES-256-CBC
auth SHA256
auth-nocache
verb 3
CONTENUTO DEL FILE: /etc/openvpn/vpnname.conf
dev tun
proto udp
port XXXX
ca /etc/openvpn/easy-rsa/pki/ca.crt
cert /etc/openvpn/easy-rsa/pki/issued/raspberrypi_0XXXXXX2-5XXXX9-4XX4-aXX8-7XXXXXXaff.crt
key /etc/openvpn/easy-rsa/pki/private/raspberrypi_0XXXXXX2-5XXXX9-4XX4-aXX8-7XXXXXXafff.key
dh none
topology subnet
server 10.X.0.0 255.255.255.0
# Set your primary domain name server address for clients
push "dhcp-option DNS 1.1.1.1"
push "dhcp-option DNS 1.0.0.1"
# Prevent DNS leaks on Windows
push "block-outside-dns"
# Override the Client default gateway by using 0.0.0.0/1 and
# 128.0.0.0/1 rather than 0.0.0.0/0. This has the benefit of
# overriding but not wiping out the original default gateway.
push "redirect-gateway def1"
client-to-client
keepalive 1800 3600
remote-cert-tls client
tls-version-min 1.2
tls-crypt /etc/openvpn/easy-rsa/pki/ta.key
cipher AES-256-CBC
auth SHA256
user nobody
group nogroup
persist-key
persist-tun
crl-verify /etc/openvpn/crl.pem
status /var/log/openvpn-status.log 20
status-version 3
syslog
verb 3
#DuplicateCNs allow access control on a less-granular, per user basis.
#Remove # if you will manage access by user instead of device.
#duplicate-cn
# Generated for use by
PiVPN.io
SUL CELLULARE USO COME APP. OPENVPN CONNECT V. 3.1.0 4292).
[
(05/01/2020, 11:56)Enrico Sartori Ha scritto: hai cercato informazioni nei log di openvpn? /var/log/..