hmm

VM_ROAD_WARRIOR.sh

@@ -25,10 +25,7 @@ sudo cp user.key $ca_dir
 [[ -e "user.csr" ]] && echo "user.csr ja criado" || sudo openssl req -new -key user.key -out user.csr
 [[ -e "user.crt" ]] && echo "user.crt ja criado" || sudo openssl ca -in user.csr -cert ca.crt -keyfile ca.key -out user.crt
 
-sudo cp user.conf /etc/openuser/client/
 sudo cp user.csr /etc/openuser/client/
 sudo cp user.crt /etc/openuser/client/
-sudo cp dh2048.pem /etc/openuser/client/
 sudo cp client.conf /etc/openvpn/client/
-
-openssh --config /etc/openvpn/client/client.conf
+openvpn --config /etc/openvpn/client/client.conf

VM_VPN_GATEWAY.sh

@@ -53,16 +53,15 @@ sudo iptables-save > /etc/sysconfig/iptables # :3
 
 # Copiar o Self-signed Certificate Authority
 ca_dir="/etc/pki/CA"
-sudo mkdir -p $ca_dir 
+sudo mkdir -p "${ca_dir}/newcerts"
 sudo touch "${ca_dir}/serial"
 sudo cp ca.crt $ca_dir
 
 # Criar vpn certificate
 sudo cp vpn.key $ca_dir
-[[ -e "vpn.csr" ]] && echo "vpn.csr ja criado" || sudo openssl req -new -key vpn.key -out vpn.csr
-[[ -e "vpn.crt" ]] && echo "vpn.crt ja criado" || sudo openssl ca -in vpn.csr -cert ca.crt -keyfile ca.key -out vpn.crt
-
-openssl dhparam -out dh2048.pem 2048
+[[ -e "vpn.csr" ]]      && echo "vpn.csr ja criado"     || sudo openssl req -new -key vpn.key -out vpn.csr
+[[ -e "vpn.crt" ]]      && echo "vpn.crt ja criado"     || sudo openssl ca -in vpn.csr -cert ca.crt -keyfile ca.key -out vpn.crt
+[[ -e "dh2048.pem" ]]   && echo "dh2048 ja  foi criado" || openssl dhparam -out dh2048.pem 2048
 sudo cp vpn.conf /etc/openvpn/server/
 sudo cp vpn.csr /etc/openvpn/server/
 sudo cp vpn.crt /etc/openvpn/server/

client.conf

@@ -7,3 +7,5 @@ persist-key
 ca ca.crt
 cert user.crt
 key user.key
+
+key-direction 1

vpn.conf

@@ -10,5 +10,6 @@ server 10.60.0.0 255.255.255.0
 
 ;verb4
 ;plugin something
-;tls-auth
-;key-direction 0
+;tls-auth adjjkjdhsadhkjh
+
+key-direction 0