Yadda ake Shigar da Sanya OpenVPN Server akan Zentyal 3.4 PDC - Kashi na 12

OpenVPN shine Buɗe tushen kuma shiri ne na kyauta wanda ya dogara da ka'idar Secure Socket Layer wanda ke gudana akan Virtual Private Networks wanda aka ƙera don ba da amintattun hanyoyin sadarwa zuwa Cibiyar Sadarwar Ƙungiyarku ta Intanet, ba tare da wani dandamali ko Operating System kuke amfani da shi ba, kasancewa a matsayin duniya. kamar yadda zai yiwu (yana aiki akan Linux, UNIX, Windows, Mac OS X da Android). Hakanan yana iya gudana azaman abokin ciniki da uwar garken lokaci guda ƙirƙirar rami mai rufaffen rufaffen kan ƙarshen maɓalli da takaddun shaida ta amfani da na'urorin TAP/TUN.

Wannan koyaswar tana jagorantar ku ta hanyar shigarwa da daidaitawa OpenVPN Server akan Zentyal 3.4 PDC don haka zaku iya samun damar yankinku amintacce daga sauran wuraren Intanet fiye da Gidan Yanar Gizon ku ta amfani da abokan ciniki na OpenVPN akan injunan tushen Windows. .

  1. Tsohon Zentyal 3.4 azaman Jagorar Shigar PDC

Mataki 1: Shigar OpenVPN Server

1. Shiga Zentyal 3.4 Kayan aikin Gudanarwar Yanar Gizo yana nuna mai bincike zuwa adireshin IP na Zentyal ko sunan yanki (https://domain_name).

2. Je zuwa Gudanar da Software -> Zentyal Components, zaɓi Sabis na VPN kuma danna maɓallin Shigar da.

3. Bayan kunshin OpenVPN yayi nasarar shigar da kewaya zuwa Module Status kuma duba VPN don kunna module.

4. Karɓi sabon pop-up wanda zai baka damar ganin tsarin gyare-gyaren tsarin sannan ka hau kan shafi kuma danna Ajiye Canje-canje don amfani da sabbin saitunan.

Mataki 2: Sanya OpenVPN Server

5. Yanzu lokaci ya yi da za a saita Zentyal OpenVPN Server. Kewaya zuwa Infrastructure -> VPN -> Sabis fiye da danna kan Ƙara Sabo.

6. Zaɓi sunan da aka kwatanta don uwar garken VPN ɗinku, duba An kunna kuma danna Ƙara.

7. Sabuwar uwar garken VPN da aka ƙirƙira yakamata ta bayyana akan jerin Sabar don haka danna maɓallin Configurations don saita wannan sabis ɗin.

8. Gyara tsarin uwar garken tare da saitunan masu zuwa kuma idan kun gama danna Change.

  1. Tsarin Sabar = UDP yarjejeniya, Port 1194 –default OpenVPN yarjejeniya da tashar jiragen ruwa (UDP tana aiki da sauri fiye da TCP saboda yanayin rashin haɗin kai) .
  2. Adireshin VPN = 10.10.10.0/24 - a nan za ku iya zaɓar kowane adireshin cibiyar sadarwar sararin samaniya da kuke so amma ku tabbata tsarin ku baya amfani da sararin adireshin cibiyar sadarwa iri ɗaya. .
  3. Server Takaddun shaida = Shaidar sunan uwar garken ku - Lokacin da kuka fara ƙara sabuwar uwar garken VPN ta atomatik ana bayar da Takaddun shaida tare da sunan uwar garken VPN ɗin ku.
  4. Izinin abokin ciniki ta sunan gama gari = zaɓi Zentyal bayanin kansa.
  5. Duba TUN Interface - yana kwaikwayi na'urar Layer Network kuma tana aiki a Layer 3 na samfurin OSI (idan ba a bincika nau'in TAP ba ana amfani da shi, kama da gada Layer 2).
  6. Duba Fassarar Adireshin Yanar Gizo - bayanin kai.
  7. Duba Ba da damar haɗin kai abokin ciniki-zuwa-aboki - Daga ɓangarorin ƙarshen nesa zaku iya ganin sauran injinan ku waɗanda ke zaune akan hanyar sadarwar ku ta gida.
  8. Interface don saurare a kunne = zaži Duk Interfaces.
  9. Duba Ƙofar Juyawa - bayanin kai.
  10. Sabbin Suna Na Farko da Na Biyu = Ƙara Ip ɗin Sabar Sunan Zentyal.
  11. Yankin Bincike = ƙara sunan yankin ku.

9. Idan kun ayyana wasu Internal Networks waɗanda Zentyal ya sani game da su a cikin Network -> Abubuwa danna Cibiyoyin Tallace-tallacen fayil, zaɓi kuma ƙara cibiyoyin sadarwar ku na ciki.

10. Bayan an yi duk daidaitawa zuwa uwar garken VPN buga a saman maballin Ajiye Canje-canje don amfani da sabbin saitunan.

Mataki 3: Buɗe Tashoshin Wuta na Wuta

11. Kafin a zahiri buɗe Firewall zuwa OpenVPN zirga-zirga dole ne a fara bayyana sabis ɗin don Zentyal Firewall. Kewaya zuwa Network -> Sabis -> Ƙara Sabuwa.

12. Shigar da bayanin name don wannan sabis ɗin don tunatar da ku wanda aka saita don OpenVPN kuma zaɓi Description sannan ku danna Add.

13. Bayan sabon sabis ya bayyana a cikin Lissafin Ayyuka danna maballin Configuration don gyara saitunan sai ku danna Add New akan allo na gaba.

14. Yi amfani da saitunan masu zuwa akan tsarin sabis na vpn kuma idan kun gama danna Add.

  1. Protocol = UDP (idan akan tsarin uwar garken VPN kun zaɓi ka'idar TCP ku tabbata kun ƙara sabon sabis anan tare da tashar jiragen ruwa iri ɗaya akan TCP).
  2. Tsarin Tashar ruwa = Kowa.
  3. Tashar Tashar Wuta = 1194.

15. Bayan kun ƙara ayyukan da ake buƙata danna maɓallin Ajiye Canje-canje na sama don amfani da saitunan.

16. Yanzu lokaci ya yi da za a bude Zentyal Firewall don haɗin OpenVPN. Je zuwa Firewall -> Tace fakiti-> Dokokin Fayil daga Cibiyar Sadarwar Cikin Gida zuwa Zentyal - Saida Dokokin kuma danna kan Ƙara Sabuwa.

17. A sabuwar doka yi saitunan masu zuwa kuma idan kun gama danna Add.

  1. Shawara = Karba
  2. Madogararsa = Kowa
  3. Sabis = an tsara tsarin sabis ɗin ku na vpn yanzu

18. Maimaita matakan tare da Sharuɗɗan tacewa daga hanyoyin sadarwa na waje zuwa Zentyal sannan a adana kuma yi amfani da canje-canje ta danna maballin Ajiye Canje-canje na sama.

Yanzu OpenVPN Server ɗinku an daidaita shi sosai kuma Zentyal na iya karɓar amintattun hanyoyin sadarwa ta hanyar SSL tunnels daga abokan ciniki na OpenVPN na ciki ko na waje, abin da ya rage kawai shine saita abokan cinikin Windows OpenVPN.

Mataki 4: Sanya abokan ciniki na OpenVPN akan Windows

19. Zentyal OpenVPN yana ba da tsakanin tsarin fayil, takardar shaidar uwar garken da maɓalli da ake buƙata ga abokin ciniki vpn software da ake buƙata don injunan tushen Windows don tantancewa zuwa uwar garken VPN. Don zazzage software na OpenVPN da fayilolin daidaitawar abokan ciniki (maɓallai da takaddun shaida) sake kewaya zuwa Infrastructure -> VPN -> Sabis kuma je zuwa > Zazzage Maɓallin Client na uwar garken da kuke son shiga.

20. Akan Zazzage Client Bundle na uwar garken ku yi amfani da waɗannan saitunan don injin Windows sannan Zazzagewa kunshin abokin ciniki.

  1. Nau'in Abokin Ciniki = Windows (zaka iya zaɓar Linux ko Mac OS X)
  2. Takaddun shaida na abokin ciniki = Zentyal
  3. Duba Ƙara mai sakawa na OpenVPN zuwa daure (wannan zai haɗa da mai saka software na OpenVPN)
  4. Dabarun Haɗuwa = Bazuwar
  5. Adireshin Sabar = Zentyal Adireshin IP na Jama'a na Intanet (ko sunan mai masaukin DNS mai inganci)
  6. Ƙarin Adireshin Sabar = kawai idan kana da wani adireshin IP na jama'a
  7. Ƙarin Adireshin Sabar na Biyu = daidai da Ƙarin Adireshin Sabar

21. Bayan an zazzage ko canja wurin Client Bundle ta amfani da amintaccen tsari akan na'urorin Windows ɗinku na nesa, cire zip archive ɗin kuma shigar da software na OpenVPN sannan ku tabbata kun shigar da direbobin TAP na Windows.

22. Bayan software na OpenVPN ya yi nasarar shigarwa akan Windows kwafi duk Takaddun shaida, Maɓallai da tsarin fayil ɗin abokin ciniki daga bayanan da aka cire zuwa wurare masu zuwa.

C:\Program Files\OpenVPN\config\
C:\Program Files (x86)\OpenVPN\config\

23. Danna kan BudeVPN GUI Desktop din ku don fara shirin sai ku je Taskbar a gefen hagu na OpenVPN sai ku danna Connect.

24. A pop-up taga tare da your dangane ya kamata bayyana a kan tebur da kuma bayan connection samu nasarar kafa a kan biyu rami endpoints wani taga kumfa zai sanar da wannan hujja da kuma nuna VPN IP Address.

25. Yanzu za ku iya gwada haɗin ku ta hanyar yin ping adreshin uwar garken Zentyal VPN ko buɗe mashigar bincike kuma duba sunan yankinku ko adireshin uwar garken VPN a cikin URL.

Ta kowane hali tashar Windows ɗinku mai nisa yanzu shiga Intanet ta hanyar Zentyal VPN Server (zaku iya bincika adireshin IP na jama'a na Windows kuma ku ga cewa ya canza tare da Zentyal IP) kuma duk zirga-zirgar da ke tsakanin Windows da Zentyal an ɓoye su a kan shugabannin rami biyu, hakika ku. na iya dubawa ta hanyar gudanar da umarni tracert daga injin ku akan kowane adireshin intanet na IP ko yanki.

OpenVPN yana ba da mafita mai aminci mai sarrafawa don mayaƙan hanya da masu amfani da nesa don samun dama ga albarkatun cibiyar sadarwar kamfanin ku, wanda ba shi da tsada, mai sauƙin saitawa kuma yana gudana akan duk manyan dandamali na OS.