Due to the recent developments around seacrets lane, I decided to publish a short article.
Please don’t let the security vendors kick me too much . And please don’t kick me this is my first experience of writing articles of this kind.
So we need a dedicated server with CentOS 5 operating system installed.
Install and configure your own vpn server.
We will create a VPN server based on openvpn.net sources. I will build the server based on centos 5.
so go to the site and download the distribution of the server client. https://openvpn.net/index.php/access-vpn-as-sw.html choose Centos or whatever operating system you have on your server
Here we select the specific version of the axis installed on the server. In this case it is Centos 5 32-bit
download the package.
Next, with the help of ftp manager pour the distribution to the server. I advise to use winscp manager it is free and has almost all the necessary functionality.
get connected to the server, choose a directory to upload the file to, for example, I upload it to /home/ directory and start copying.
as soon as copying is complete, connect to the server via ssh using the popular putty client
enter login, password, then execute commands:
cd /home/ rpm -i openvpn-as-1.8.3-CentOS5.i386.rpm
then we should get what’s on the screen
The Access Server has been successfully installed in /usr/local/openvpn_as Configuration log file has been written to /usr/local/openvpn_as/init.log Please enter passwd openvpn to set the initial administrative password, then login as openvpn to continue configuration here: https://ip сервера:943/admin To reconfigure manually, use the /usr/local/openvpn_as/bin/ovpn-init tool.
Access Server web UIs are available here: Admin UI: https://ip сервера:943/admin Client UI: https://ip сервера:943/
then configure the created default user for the admin panel, set a password for it by the command passwd openvpn
https://h1964807.stratoserver.net/filOSmcyJjGAA.jpg Then go to:
enter the openvpn login and password you just installed and accept all the required licensing conditions
This is the admin panel of our server
Basically all default settings are fine, anyone can read more details about them at openvpn.net,
I will focus on a few points:
By default, only 2 users can be created on our server. If you want to increase the number of users you need to buy additional licenses for additional users. You can do this at openvpn.net
On the user permission link we can configure the users of our server. Give them admin rights, deny access temporarily or permanently, delete to add users.
then connect to the server via ssh and add a user from the command line:
adduser user1 passwd user1
Then click start the server on the main page, the server is ready to go
To directly connect to a VPN you need to: go to
enter the login and password of our VPN user here
download the client from this page, install it on your work machine
then click the Connect button and accept all required certificates.
The status of the running program will change as it becomes:
we are connected to the VPN.
Additional recommendations about VPN, necessary from my point of view: 1) VPN is just one of many ways to ensure your safety, do not assume that if you work through VPN, it is enough. 2) it is necessary to take a dedicated server for a VPN. Not vds or vps. This is more about security than the client uptime. 3) In my opinion there is no big difference which VPN you use double quadro or single. If you want to find you will not save any double. Therefore, when choosing the location of the base point of the VPN server should not pay attention to good ping or channel this server, and the laws of the country where the server is located, as well as how well cooperate law enforcement agencies of the country with the region where we are going to work. So imho morbid to take dablwpn yuk-de and work on the eu elementary request will calculate you. Try to find a location for the server with weak high-tech legislation combined with poor relations with the world community.
Well you shouldn’t work in the region where you are physically located and where your VPN server is located.
(C) ender 2011. Reprinting, copying only with my consent
PS will be happy to add comments
buy ssn fullz