OpenVPN Server Setup With Easy-RSA on SmartOS
Posted by Dave Eddy on Jul 05 2018 - tags: techAt home I have a zone dedicated to running an OpenVPN server. With this I can connect to my home network securely on both my laptop and phone when I’m away.
I followed this guide for getting the zone ready to route properly for OpenVPN, and then used Easy-RSA to generate the certificates needed.
Zone Setup
To get started, make sure the zone is created with allow_ip_spoofing
enabled
on the NIC of the zone. I used a payload similar to this to create the vpn
zone.
{
"brand": "joyent",
"image_uuid": "221635c4-3b85-11e8-b6ba-23f68c9bf2c4",
"autoboot": true,
"alias": "vpn",
"hostname": "vpn.rapture.com",
"dns_domain": "rapture.com",
"resolvers": [
"10.0.1.2",
"10.0.1.3"
],
"ram": 512,
"nics": [
{
"nic_tag": "admin",
"ip": "10.0.1.41",
"allow_ip_spoofing": true,
"netmask": "255.255.255.0",
"gateway": "10.0.1.1",
"primary": true
}
]
}