Difference between revisions of "OpenVPN Settings and iptables configured for Amazon AWS EC3 Server"
(→Add or edit the following in the OpenVPN config file - server.conf) |
|||
| Line 3: | Line 3: | ||
proto tcp-server dev tun1 | proto tcp-server dev tun1 | ||
ifconfig 10.4.0.1 10.4.0.2</pre> | ifconfig 10.4.0.1 10.4.0.2</pre> | ||
| − | You can also change other settings as you wish. '''But you have to add the command ifconfig.''' | + | You can also change other settings as you wish. '''But you have to add the command ifconfig. In this example: ip 10.4.0.1 is the local vpn end point - ip 10.4.0.2 is the remote VPN end point.''' |
| + | |||
=== Setting up iptables === | === Setting up iptables === | ||
Add this iptables command to allow Internet access to your VPN clients. | Add this iptables command to allow Internet access to your VPN clients. | ||
Latest revision as of 20:23, 29 January 2020
Add or edit the following in the OpenVPN config file - server.conf
port 1194 proto tcp-server dev tun1 ifconfig 10.4.0.1 10.4.0.2
You can also change other settings as you wish. But you have to add the command ifconfig. In this example: ip 10.4.0.1 is the local vpn end point - ip 10.4.0.2 is the remote VPN end point.
Setting up iptables
Add this iptables command to allow Internet access to your VPN clients.
sudo iptables -t nat -A POSTROUTING -s 10.4.0.1/2 -o eth0 -j MASQUERADE sudo iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE
Allow IP forwarding as well:
echo 1 | sudo tee /proc/sys/net/ipv4/ip_forward
Do not forget to allow access to the port 1194. Please check for that your firewall settings in your server and Amazon AWS console settings.
