From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: by mail.stargrave.org (Postfix, from userid 66) id 10E5713A18; Mon, 21 Sep 2015 12:06:10 +0300 (MSK) Received: by mail.stargrave.org (Postfix, from userid 1001) id 2AD0A61D8; Mon, 21 Sep 2015 12:04:28 +0300 (MSK) Date: Mon, 21 Sep 2015 12:04:28 +0300 From: stargrave@stargrave.org To: govpn-devel@lists.cypherpunks.ru Message-ID: <20150921090428.GA7282@stargrave.org> Mail-Followup-To: govpn-devel@lists.cypherpunks.ru References: MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="5mCyUwZo2JvN/JJP" Content-Disposition: inline In-Reply-To: OpenPGP: id=AE1A8109E49857EF; url=http://www.stargrave.org/pubkey.txt User-Agent: Mutt/1.5.22 (2013-10-16) Subject: Re: [Govpn-devel] How to install and config govpn on server & client? X-BeenThere: govpn-devel@lists.cypherpunks.ru X-Mailman-Version: 2.1.18 Precedence: list List-Id: "GoVPN announcements, patches, questions and bug reports" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 Sep 2015 09:06:10 -0000 --5mCyUwZo2JvN/JJP Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Greetings! >How to install and config govpn on server & client? I need details info >about that. I hope that example here: http://www.cypherpunks.ru/govpn/Example.html should help. Initially you must generate client's identity and password verifier. I recommend to use trivial script newclient.sh that comes in distribution: client% ./utils/newclient.sh Mylove Enter passphrase:[hello world] Your id is: 35180231a9532325f24d37352a044dd7 Place the following JSON configuration entry on the server's side: "35180231a9532325f24d37352a044dd7": { "name": "Mylove", "up": "/path/to/up.sh", "verifier": "6f7657776fcc7ce0128138ad78b7438cd482ef77abf79df41e= 1b51568aefc390" } Verifier was generated with: ./utils/storekey.sh /tmp/passphrase govpn-verifier -id 35180231a9532325f24d37352a044dd7 -key /tmp/passp= hrase Create up.sh script that will output on the first line TAP interface name that must be used for the peer. For example: % umask 077 % ed /path/to/up.sh a #!/bin/sh echo tap0 . wq 20 % chmod +x /path/to/up.sh Then you must add this JSON entry in peers.json (default filename for server configuration) on the server side: server% cat > peers.json < /home/stargrave/mylove-up.sh /tmp/up.sh <