VPN - yamanetoshi's diary

ええと KOZOS の続きを、って思った瞬間 OpenVPN で接続云々な試験をせねば、なことに気づきまして急遽こちらの記録をナニ。
ちなみに Ubuntu で apt-cache search してみたら以下。

$ apt-cache search openvpn
openvpn - virtual private network daemon
openvpn-blacklist - list of blacklisted OpenVPN RSA shared keys
anytun - secure anycast tunneling protocol
collectd-core - statistics collection and monitoring daemon (core system)
ebox-openvpn - eBox - VPN Service
gadmin-openvpn-client - GTK+ configuration tool for openvpn (client)
gadmin-openvpn-client-dbg - GTK+ configuration tool for openvpn (debug for client)
gadmin-openvpn-server - GTK+ configuration tool for openvpn (server)
gadmin-openvpn-server-dbg - GTK+ configuration tool for openvpn (debug for server)
gadmintools - GTK+ server administration tools
kvpnc - vpn clients frontend for KDE4
network-manager-openvpn - network management framework (OpenVPN plugin)
network-manager-openvpn-gnome - network management framework (OpenVPN plugin, GNOME UI)
network-manager-openvpn-kde - KDE NetworkManagement infrastructure (OpenVPN plugin)
openvpn-auth-ldap - OpenVPN LDAP authentication module
tunneldigger - Configures OpenVPN tunnel networks
tunneldigger-utils - Utilities for TunnelDigger-configured OpenVPN tunnels
$

openvpn というパケジがソレにあたると見て良いのかどうか。
とりあえず

http://blog.livedoor.jp/potivip/archives/51167682.html

に記録があるようなので元気があれば接続試験実施予定。

とりあえず

openvpn パケジは入れておこう。

$ sudo apt-get install -fy openvpn -s
Reading package lists... Done
Building dependency tree       
Reading state information... Done
The following packages were automatically installed and are no longer required:
  libecj-java db4.6-util linux-headers-2.6.35-22-generic libcitadel2 citadel-mta nmh citadel-server linux-headers-2.6.35-22 libdb4.6 libsieve2-1
Use 'apt-get autoremove' to remove them.
The following extra packages will be installed:
  liblzo2-2 libpkcs11-helper1 openssl-blacklist openvpn-blacklist
Suggested packages:
  resolvconf
The following NEW packages will be installed:
  liblzo2-2 libpkcs11-helper1 openssl-blacklist openvpn openvpn-blacklist
0 upgraded, 5 newly installed, 0 to remove and 237 not upgraded.
Inst openssl-blacklist (0.5-2 Ubuntu:10.10/maverick [all])
Inst liblzo2-2 (2.03-2 Ubuntu:10.10/maverick [amd64])
Inst libpkcs11-helper1 (1.07-1build1 Ubuntu:10.10/maverick [amd64])
Inst openvpn-blacklist (0.4 Ubuntu:10.10/maverick [all])
Inst openvpn (2.1.0-3ubuntu1 Ubuntu:10.10/maverick [amd64])
Conf openssl-blacklist (0.5-2 Ubuntu:10.10/maverick [all])
Conf liblzo2-2 (2.03-2 Ubuntu:10.10/maverick [amd64])
Conf libpkcs11-helper1 (1.07-1build1 Ubuntu:10.10/maverick [amd64])
Conf openvpn-blacklist (0.4 Ubuntu:10.10/maverick [all])
Conf openvpn (2.1.0-3ubuntu1 Ubuntu:10.10/maverick [amd64])
$

bridge-utils はスデに導入済みな模様。

$ dpkg --get-selections|grep bridge
bridge-utils                                    install
libaccess-bridge-java                           install
libaccess-bridge-java-jni                       install
scim-bridge-agent                               install
scim-bridge-client-gtk                          install
$

ので遠慮なく導入。で、接続元の管理者に頂戴したソレ達を /etc/openvpn/ 配下にコピーしてサービス起動してみりゃ良いのだろうか。

試験実施

ええと、ファイルをコピーしてサービス起動してみた。

$ sudo /etc/init.d/openvpn start
 * Starting virtual private network daemon(s)...
$

む。これで指示されたサイトに接続してみたら NG でしたが、client.ovpn の remote なディレクティブに指定されてるホストとは ping な返事が戻ってきます。
ちょっと openvpn 理解できてないので、詳細は明日確認な方向か。