chromatic/openvpn-install
1
0
Fork 0
mirror of https://github.com/hwdsl2/openvpn-install.git synced 2026-01-21 07:23:58 +00:00
Code Issues Packages Projects Releases Wiki Activity

Improve script output

Browse Source
This commit is contained in:
hwdsl2
2022-05-20 18:12:37 -05:00
parent 2bf4d5e33a
commit 7c44e0b694
1 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
openvpn-install.sh
View File

@@ -283,10 +283,10 @@ LimitNPROC=infinity" > /etc/systemd/system/openvpn-server@server.service.d/disab
set -x
# Create the PKI, set up the CA and the server and client certificates
./easyrsa init-pki >/dev/null
./easyrsa --batch build-ca nopass >/dev/null
EASYRSA_CERT_EXPIRE=3650 ./easyrsa build-server-full server nopass >/dev/null
EASYRSA_CERT_EXPIRE=3650 ./easyrsa build-client-full "$client" nopass >/dev/null
EASYRSA_CRL_DAYS=3650 ./easyrsa gen-crl >/dev/null
./easyrsa --batch build-ca nopass >/dev/null 2>&1
EASYRSA_CERT_EXPIRE=3650 ./easyrsa build-server-full server nopass >/dev/null 2>&1
EASYRSA_CERT_EXPIRE=3650 ./easyrsa build-client-full "$client" nopass >/dev/null 2>&1
EASYRSA_CRL_DAYS=3650 ./easyrsa gen-crl >/dev/null 2>&1
# Move the stuff we need
cp pki/ca.crt pki/private/ca.key pki/issued/server.crt pki/private/server.key pki/crl.pem /etc/openvpn/server
# CRL is read with each client connection, while OpenVPN is dropped to nobody