OpenVPN, Security

OpenVPN: A default config template for server and client

Leave a comment

Hi,

these are just 2 templates for a OpenVPN Server and a clients based on the post.

The Server side, based on Debian Linux 8. Copy Key, Certificate & CRL to the right place and create the diffie hellmann key for key exchange.

# Root Directory of the CA
export CA_ROOT_DIRECTORY=${HOME}/openvpn/CA
# The common directory
export CA_COMMON_DIR=${CA_ROOT_DIRECTORY}/common
# Directory for Server Certificate
export CA_SERVER_DIR=${CA_ROOT_DIRECTORY}/Server
# The CRL
export CA_CRL=${CA_COMMON_DIR}/crl.pem
# The Environment variable where openssl looking for its config
export OPENSSL_CONF=${CA_COMMON_DIR}/openssl.cfg
# Move default config
mv /etc/openvpn/server  /etc/openvpn/server.old 2> /dev/null
# Copy Key & Certificate
mkdir /etc/openvpn/vpnsrv
cp $CA_SERVER_DIR/server.p12 /etc/openvpn/vpnsrv
cp $CA_CRL /etc/openvpn/vpnsrv
# Create Diffie Hellmenn key for key exchange
export OPENSSL_BIN=`which openssl`
$OPENSSL_BIN gendh -out "/etc/openvpn/vpnsrv/dh.pem" 2048
# Create a Logfolder
mkdir -p  /var/log/openvpn

Continue reading OpenVPN: A default config template for server and client

Advertisment to support michlstechblog.info

Linux

Postfix: Internal Mailrelay with Auth and TLS encryption to Provider

Leave a comment

Hi,

this will describe the steps to setup a MailRelay for internal use the accepts SMTP Mails and relay it over a secure TLS connection with authification to an external mail provider on top of Debian 8 Jessie.
Continue reading Postfix: Internal Mailrelay with Auth and TLS encryption to Provider

Powershell, VMware

VMware: Set DNS Server of all ESXi Host conntected to vCenter

Leave a comment

Hi,

this is a script to set the DNS Servers for all ESXi Hosts connected to vCenter.

Usage is very simple. Open a PowerCli Command shell. The script accept 2 parameters. “vc” = the vCenter and “s” is the a comma separarted list of DNS Servers.

PS D:\temp> .\SetHostDNS.ps1 -vc yourVCenterServer.yourdomain -s 8.8.4.4,8.8.8.8
Set DNS Server at host1.yourdomain ... ok
Set DNS Server at host2.yourdomain ... ok

Thats all 🙂

Michael

Wordpress

WordPress: Warning: Cannot modify header information

Leave a comment

Hi,

when you change your Provider or your provider changes PHP version the Login page of WordPress (wp-login.php) shows an error message like this and a login is impossible:

Warning: Cannot modify header information headers already sent by…
Continue reading WordPress: Warning: Cannot modify header information

Linux, Raspberry PI

Raspberry Pi: Script to (Cross) Compile a new Kernel

2 Comments

Hi,

a my Project Owncloud on a Raspberry Pi I want to use AppArmor to protect the lighttpd webserver. Unfortunately the default kernel is complied without apparmor support.

So I decided to build my own kernel:-)

Continue reading Raspberry Pi: Script to (Cross) Compile a new Kernel

My Knowledgebase for things about Linux, Windows, VMware, Electronic and so on…