Jackson Mbasha Backumba
Share this post:
Accepted AnswerNick HowittOnlineCan I ask that you familiarise yourself with the ClearOS documentation? There are a number of ways to get to the OpenVPN app documentation. You can get if from the Marketplace item for the app, from the app's own configuration screen (once installed) or from the Resources menu at the top of this screen. There may be other ways as well.
Accepted AnswerJackson Mbasha BackumbaOffline
Accepted AnswerNick HowittOnlineWelcome to the forum.
I guess you are thinking OpenVPN for your VPN? This is ideal for roadwarrior access (mobile phones, laptops, home working and so on) and should be directly supported by ClearOS. Install the app from the marketplace and keep its configuration on automatic. There is a documentation link. Have a look at that. I've noticed that some of it is now a bit out of date and and I'm in the process of updating the v7 help text. The download link for the Windows client is good but you download an exe file and the screens look completely different. The configuration file and certificates should should go into the "config" folder under OpenVPN in either "C:\Program Files" or "C:\Program Files (x86)".
The OpenVPN Connect app is available from the Play Store for Android or the App Store for iOS. Loading Android is easier as you just have to put all four files in the Android Downloads folder and the app can import them up from there. For iOS you have to use iTunes and drop all four files onto the OpenVPN app. There is a way of combining the certificates into the .ovpn file which means you can install the whole profile in iOS from an e-mail (this process also works with other operating systems). You'll either have to google it or wait until I write it up!
In the ovpn file, make sure the "remote" line points to your external FQDN, which can be your poweredbyclear.com FQDN, or it can be an IP address.
The other gotcha is that ideally your LAN should not use the 192.168.0.0/24 or 192.168.1.0/24 subnets. This is because they are very commonly used by domestic routers and a key requirement is that the local and remote subnets on a VPN are different. If they are not, OpenVPN will connect but traffic will not pass.