![\"\"](\"https:\/\/artem.services\/wp-content\/uploads\/2018\/10\/OpenVPN.png\")
<\/p>\n<\/p>\n
\u0421\u0432\u044f\u0437\u0430\u0442\u044c 2 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u044b\u0445 \u043d\u043e\u0434\u044b \u0432 \u043c\u0435\u0436\u0434\u0443 \u0441\u043e\u0431\u043e\u0439, \u0447\u0442\u043e\u0431\u044b \u043e\u0431\u0449\u0435\u043d\u0438\u0435 \u043c\u0435\u0436\u0434\u0443 \u043d\u0438\u043c\u0438 \u0434\u043b\u044f \u043d\u0438\u0445 \u0431\u044b\u043b\u043e "\u043f\u0440\u043e\u0437\u0440\u0430\u0447\u043d\u043e". \u0422\u0430\u043a \u0436\u0435 \u0432\u0430\u0436\u043d\u0430 \u0441\u0442\u0430\u0431\u0438\u043b\u044c\u043d\u043e\u0441\u0442\u044c \u043a\u0430\u043d\u0430\u043b\u0430, \u0441\u043a\u043e\u0440\u043e\u0441\u0442\u044c \u0438 \u043a\u043e\u043d\u0435\u0447\u043d\u043e \u0436\u0435 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u044c.<\/p>\n
\u041f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u043c, \u0447\u0442\u043e \u0435\u0441\u0442\u044c 2 \u043d\u043e\u0434\u044b:<\/p>\n
\u0423\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u043c \u043d\u0430 \u043d\u0438\u0445 OpenVPN<\/strong><\/p>\n CentOS<\/strong>:<\/p>\n Ubuntu<\/strong>:<\/p>\n <\/p>\n \u041d\u0430 \u043d\u043e\u0434\u0435 Server<\/strong> \u0441\u043e\u0437\u0434\u0430\u0434\u0438\u043c \u0434\u0438\u0440\u0435\u043a\u0442\u043e\u0440\u0438\u044e \u0434\u043b\u044f \u0445\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u043a\u043b\u044e\u0447\u0435\u0439:<\/p>\n \u0421\u0433\u0435\u043d\u0435\u0440\u0438\u0440\u0443\u0435\u043c \u043a\u043b\u044e\u0447:<\/p>\n \u0421\u043e\u0437\u0434\u0430\u0434\u0438\u043c \u0444\u0430\u0439\u043b \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438:<\/p>\n \u0421\u043e \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u043c \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u044b\u043c:<\/p>\n \u0414\u043e\u0431\u0430\u0432\u0438\u043c \u0432 \u0430\u0432\u0442\u043e\u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0443 \u0438 \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u0435\u043c:<\/p>\n \u041f\u0440\u043e\u0432\u0435\u0440\u044c\u0442\u0435, \u0447\u0442\u043e \u0443 \u0432\u0430\u0441 \u0435\u0441\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043d\u043e\u0434\u0435 \u043f\u043e \u043f\u043e\u0440\u0442\u0443 1194 TCP<\/strong>. \u0422\u0430\u043a \u0436\u0435 \u0443\u0447\u0442\u0438\u0442\u0435, \u0447\u0442\u043e \u0434\u043b\u044f OpenVPN \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u0430 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0430 TUN\/TAP<\/strong> \u0442\u0443\u043d\u043d\u0435\u043b\u0435\u0439, \u0435\u0441\u043b\u0438 \u0443 \u0432\u0430\u0441 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u0430\u044f \u043c\u0430\u0448\u0438\u043d\u0430 openVZ, \u0442\u043e \u0443\u0442\u043e\u0447\u043d\u0438\u0442\u0435 \u0443 \u0445\u043e\u0441\u0442\u0435\u0440\u0430, \u0432\u043a\u043b\u044e\u0447\u0438\u043b \u043b\u0438 \u043e\u043d \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0443 \u0438\u043b\u0438 \u043d\u0435\u0442, \u0447\u0430\u0441\u0442\u043e \u043d\u0430 \u043d\u0438\u0437\u043a\u0438\u0445 \u0442\u0430\u0440\u0438\u0444\u0430\u0445 \u043d\u0435 \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u044e\u0442 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0443 TUN\/TAP<\/strong>.<\/p>\n \u041f\u0435\u0440\u0435\u0445\u043e\u0434\u0438\u043c \u043a \u043d\u043e\u0434\u0435 Client<\/strong><\/p>\n \u0421\u043e\u0437\u0434\u0430\u0434\u0438\u043c \u0434\u0438\u0440\u0435\u043a\u0442\u043e\u0440\u0438\u044e \u0434\u043b\u044f \u0445\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u043a\u043b\u044e\u0447\u0435\u0439:<\/p>\n \u0421\u044e\u0434\u0430 \u0432\u0441\u0442\u0430\u0432\u0438\u043c \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u043e\u0435 \u043a\u043b\u044e\u0447\u0430, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0433\u0435\u043d\u0435\u0440\u0438\u0440\u043e\u0432\u0430\u043b\u0438 \u043d\u0430 \u043d\u043e\u0434\u0435 Server<\/strong><\/p>\n \u0418\u0437\u043c\u0435\u043d\u0438\u043c \u043f\u0440\u0430\u0432\u0430 \u043d\u0430 \u043a\u043b\u044e\u0447:<\/p>\n \u0421\u043e\u0437\u0434\u0430\u0434\u0438\u043c \u0444\u0430\u0439\u043b \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438:<\/p>\n \u0421\u043e \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u043c \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u044b\u043c:<\/p>\n \u0414\u043e\u0431\u0430\u0432\u0438\u043c \u0432 \u0430\u0432\u0442\u043e\u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0443 \u0438 \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u0435\u043c:<\/p>\n \u0412\u0441\u0435, \u0441\u0432\u044f\u0437\u044c Site-to-Site \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043d\u0430, \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u0439\u0442\u0435.<\/p>\n \u041d\u0435 \u0437\u0430\u0431\u044b\u0432\u0430\u0439\u0442\u0435 \u043f\u0440\u043e \u0444\u0430\u0435\u0440\u0432\u043e\u043b.<\/p>\n","protected":false},"excerpt":{"rendered":" \u0426\u0435\u043b\u044c: \u0421\u0432\u044f\u0437\u0430\u0442\u044c 2 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u044b\u0445 \u043d\u043e\u0434\u044b \u0432 \u043c\u0435\u0436\u0434\u0443 \u0441\u043e\u0431\u043e\u0439, \u0447\u0442\u043e\u0431\u044b \u043e\u0431\u0449\u0435\u043d\u0438\u0435 \u043c\u0435\u0436\u0434\u0443 \u043d\u0438\u043c\u0438 \u0434\u043b\u044f \u043d\u0438\u0445 \u0431\u044b\u043b\u043e "\u043f\u0440\u043e\u0437\u0440\u0430\u0447\u043d\u043e". \u0422\u0430\u043a \u0436\u0435 \u0432\u0430\u0436\u043d\u0430 \u0441\u0442\u0430\u0431\u0438\u043b\u044c\u043d\u043e\u0441\u0442\u044c \u043a\u0430\u043d\u0430\u043b\u0430, \u0441\u043a\u043e\u0440\u043e\u0441\u0442\u044c \u0438 \u043a\u043e\u043d\u0435\u0447\u043d\u043e \u0436\u0435 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u044c. \u041f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u043c, \u0447\u0442\u043e \u0435\u0441\u0442\u044c 2 \u043d\u043e\u0434\u044b: Server — IP 1.1.1.1 Client — IP 2.2.2.2 \u0423\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u043c \u043d\u0430 \u043d\u0438\u0445 OpenVPN CentOS: Ubuntu:<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[42],"tags":[5,12,6],"_links":{"self":[{"href":"https:\/\/artem.services\/index.php?rest_route=\/wp\/v2\/posts\/75"}],"collection":[{"href":"https:\/\/artem.services\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/artem.services\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/artem.services\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/artem.services\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=75"}],"version-history":[{"count":16,"href":"https:\/\/artem.services\/index.php?rest_route=\/wp\/v2\/posts\/75\/revisions"}],"predecessor-version":[{"id":1683,"href":"https:\/\/artem.services\/index.php?rest_route=\/wp\/v2\/posts\/75\/revisions\/1683"}],"wp:attachment":[{"href":"https:\/\/artem.services\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=75"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/artem.services\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=75"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/artem.services\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=75"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}\r\nyum install -y epel-release\r\nyum install -y openvpn easy-rsa\r\n<\/pre>\n
\r\napt install -y openvpn\r\n<\/pre>\n
\r\nmkdir -p \/etc\/openvpn\/keys\/ && cd \/etc\/openvpn\/keys\/\r\n<\/pre>\n
\r\nopenvpn --genkey --secret vpn.key\r\n<\/pre>\n
\r\nvim \/etc\/openvpn\/server.conf\r\n<\/pre>\n
\r\ndev tun\r\nproto tcp-server\r\nlocal 1.1.1.1\r\nlport 1194\r\nremote 2.2.2.2\r\nrport 1194\r\nsecret \/etc\/openvpn\/keys\/vpn.key 0\r\nifconfig 192.168.1.1 192.168.1.2\r\nroute 192.168.1.2 255.255.255.255\r\nuser nobody\r\ngroup nobody\r\npersist-tun\r\npersist-key\r\nkeepalive 10 60\r\nping-timer-rem\r\nverb 0\r\ndaemon\r\ntun-mtu 48000\r\nfragment 0\r\nmssfix 0\r\ncomp-lzo\r\ncipher aes-256-cbc\r\ntcp-nodelay\r\nsndbuf 0\r\nrcvbuf 0\r\npush "sndbuf 524288"\r\npush "rcvbuf 524288"\r\n<\/pre>\n
\r\nsystemctl enable openvpn@server\r\n<\/pre>\n
\r\nsystemctl start openvpn@server\r\n<\/pre>\n
\r\nmkdir -p \/etc\/openvpn\/keys\/ && cd \/etc\/openvpn\/keys\/\r\n<\/pre>\n
\r\nvim \/etc\/openvpn\/keys\/vpn.key\r\n<\/pre>\n
\r\nchmod 600 \/etc\/openvpn\/keys\/vpn.key\r\n<\/pre>\n
\r\nvim \/etc\/openvpn\/client.conf\r\n<\/pre>\n
\r\ndev tun\r\nproto tcp-client\r\nlocal 2.2.2.2\r\nlport 1194\r\nremote 1.1.1.1\r\nrport 1194\r\nsecret \/etc\/openvpn\/keys\/vpn.key 1\r\nifconfig 192.168.1.2 192.168.1.1\r\nroute 192.168.1.1 255.255.255.255\r\nuser nobody\r\ngroup nobody\r\npersist-tun\r\npersist-key\r\nkeepalive 10 60\r\nping-timer-rem\r\nverb 0\r\ndaemon\r\ntun-mtu 48000\r\nfragment 0\r\nmssfix 0\r\ncomp-lzo\r\ncipher aes-256-cbc\r\n<\/pre>\n
\r\nsystemctl enable openvpn@client\r\n<\/pre>\n
\r\nsystemctl start openvpn@client\r\n<\/pre>\n