OpenVPN on Debian over UFW

Complete OpenVPN How-To here:

Click here for a very nice tutorial about OpenVPN on Debian

UFW open ports

Get running applications with their used ports

UFW command to open ports

SSH Server

!!! SSH port HAS TO be opened befor you activate UFW, in other case you will block yourself from the server !!!

Apache 2

Dovecot Mail Server

TeamSpeak 3 Server

Create new VPN client certificate

In terminal go to /etc/openvpn/easy-rsa  and run following command where client1  is the name of the new client.

Accept the sign certificate and commit questions:

The new client certificates are now generated and can be copied to the client device.
You can find them in /etc/openvpn/easy-rsa/keys and you need the following files:

You can generate a unified ovpn configuration file that contains the CA, CRT and KEY data. For that take the ovpn file and replace the following lines with the content of the CA, CRT and KEY files:




Leave a comment

Your email address will not be published. Required fields are marked *