Enable IPFire OpenVPN and Windows Client Setup

1. From the Services menu, select OpenVPN
The OpenVPN page loads

2. In the Certificate Authorities and Keys section, click the Generate root/host certificates button
A Generate root/host certificates page loads

3. Enter ALL the fields and select a 2048, 3072, or 4096 bit Diffie-Hellman parameter length. Click Generate root/host certificates
It may take a few hours to generate the certificate. If the OpenVPN page does not automatically load after the cert is generated, click the BACK link.

4. Back on the OpenVPN page, click the Advanced server options button
The Advanced server options page loads

5. Select SHA2 (256bit) Hash algorith and check the HMAC tls-auth box. Click the Save button.
The OpenVPN page loads

6. Again on the OpenVPN page. In the Global Settings section, check OpenVPN on RED, LZO-Compression. Click Save. Click Start OpenVPN Server
The Current OpenVPN server status changes to RUNNING

7. In the Connection Status and Control section, click the Add button
A Connection Type page loads.

8. Select Host-to-Net. Click Add.
A Connection page loads

9. At the top of the form, enter the VPN user’s Name and Remark.¬†Finally, in the Authentication section, complete all the fields. Click the Save button.
The OpenVPN page loads with the new user in the Connection Status and Control section.

10. Click the Download Client Package (zip) floppy icon and save the file. Transfer the zip file to the client computer.


On the client computer…

1. Download and install the most current openvpn-install package from OpenVPN.net. Do not start the application.

2. Once installed, navigate to C:\Program Files\OpenVPN\config and unzip the three files from the Client Package (zip) here. You WILL need administrator privileges.

3. Reboot

4. Navigate the Windows Start Menu to the OpenVPN GUI. Start it using Run As Administrator

5. In the taskbar (may be hidden), right click the OpenVPN GUI and select Connect. If asked for a password, it is the cert password.


Leave a Reply