Difference between revisions of "Astrill Setup Manual:How to configure OpenVPN with Network Manager on Linux"

From Astrill Wiki
Jump to navigation Jump to search
 
(6 intermediate revisions by 3 users not shown)
Line 1: Line 1:
1. First open '''terminal''', and use this command to '''install''' the '''OpenVPN''' Network Manager '''plugin''':
+
=='''Step 1'''==
 +
 
 +
First open '''Terminal''', and use this command to '''install''' the '''OpenVPN''' Network Manager '''plugin''':
  
 
'''''sudo apt-get install network-manager-openvpn openvpn'''''
 
'''''sudo apt-get install network-manager-openvpn openvpn'''''
  
  
[[File:Openvpn-linux-network-manager-001.jpg]]
+
[[File:N.linux ovpnnet1.jpg|border]]
 
 
 
 
 
 
  
----
+
=='''Step 2'''==
2. Login to '''Members area''', and '''create''' and download a '''certificate for OpenVPN with configuration files'''. Click on '''Members''', login to your account, then click '''VPN Services''', and then click on '''OpenVPN certificates generation'''.
 
  
https://members.astrill.com/openvpn-certificates.php
+
Login to '''Members area''', and '''create''' and download a '''certificate for OpenVPN with configuration files'''. Click on '''Members''', login to your account, then click '''VPN Services''', and then click on '''OpenVPN certificates generation'''.
  
 +
https://members.astrill.com/tools/openvpn-certificates
  
[[File:Openvpn-linux-network-manager-002.jpg]]
 
  
 +
[[File:N.linux ovpnnet2.jpg|border]]
  
 +
=='''Step 3'''==
  
 +
Open '''Astrill-ubuntu.zip''' file you just downloaded, and pick a server and extract the OVPN file (in this example 27-USA-Seattle-1.ovpn).
  
----
 
3. Open '''Astrill-ubuntu.zip''' file you just downloaded, and pick a server and extract the OVPN file (in this example 27-USA-Seattle-1.ovpn).
 
  
 
+
[[File:N.linux ovpnnet3.1.jpg|border]]
[[File:Openvpn-linux-network-manager-003.jpg]]
 
  
  
Line 38: Line 36:
  
  
[[File:Openvpn-linux-network-manager-003b.jpg]]
+
[[File:N.linux ovpnnet3.2.jpg|border]]
  
  
  
 +
=='''Step 4'''==
  
----
+
Open '''Network Manager''', and then click on '''Add''' button to create new connection.
4. Open '''Network Manager''', and then click on '''Add''' button to create new connection.
 
  
[[File:Openvpn-linux-network-manager-004.jpg]]
+
[[File:N.linux ovpnnet4.1.jpg|border]]
  
  
 
Select '''OpenVPN''' for connection type, and then click on '''Create...''' button to create new OpenVPN connection.
 
Select '''OpenVPN''' for connection type, and then click on '''Create...''' button to create new OpenVPN connection.
  
[[File:Openvpn-linux-network-manager-004b.jpg]]
+
[[File:N.linux ovpnnet4.2.jpg|border]]
  
  
  
  
----
+
=='''Step 5'''==
5. On '''VPN''' tab, you need to set the following:
 
  
1. '''Connection name:''' ''Astrill VPN''
+
On '''VPN''' tab, you need to set the following:
  
2. '''Gateway:''' ''<VPN Server IP address>''
+
'''Connection name:''' ''Astrill VPN''
  
3. '''Authentication Type:''' ''Certificates (TLS)''
+
'''Gateway:''' ''<VPN Server IP address>''
  
4. '''User Certificate:''' ''user.crt''
+
'''Authentication Type:''' ''Certificates (TLS)''
  
5. '''CA Certificate:''' ''ca.crt''
+
'''User Certificate:''' ''user.crt''
 +
 
 +
'''CA Certificate:''' ''ca.crt''
 +
 
 +
'''Private Key:''' ''private.key''
  
6. '''Private Key:''' ''private.key''
 
  
 
Then click on '''Advanced...''' button for more configuration options.
 
Then click on '''Advanced...''' button for more configuration options.
Line 75: Line 75:
  
  
[[File:Openvpn-linux-network-manager-005.jpg]]
+
[[File:N.linux ovpnnet5.1.jpg|border]]
 +
 
 +
 
 +
 
 +
On '''General''' tab, you need to set the following:
 +
 
 +
'''Use custom gateway port:''' ''tick and set 8292''
 +
 
 +
'''Use LZO data compression:''' ''tick''
 +
 
 +
 
 +
[[File:N.linux ovpnnet5.2.jpg|border]]
 +
 
 +
 
 +
 
 +
On '''Security''' tab, you need to set the following:
 +
 
 +
'''Cipher:''' ''BF-CBC''
 +
 
 +
'''HMAC Authentication:''' ''SHA-1''
 +
 
 +
 
 +
[[File:N.linux ovpnnet5.3.jpg|border]]
 +
 
 +
 
 +
 
 +
On '''TLS Authentication''' tab, you need to set the following:
 +
 
 +
'''Use additional TSL authentication:''' ''ticked''
 +
 
 +
'''Key File:''' ''tls.key''
 +
 
 +
'''Key Direction:''' ''1''
 +
 
 +
 
 +
[[File:N.linux ovpnnet5.4.jpg|border]]
 +
 
 +
 
 +
 
 +
Once done, click on '''OK''' button and then click on '''Save''' button.
 +
 
 +
 
 +
 
 +
=='''Step 6'''==
 +
 
 +
Now we are ready to start Astrill OpenVPN connection.
 +
 
 +
 
 +
[[File:N.linux ovpnnet6.1.jpg|border]]
 +
 
 +
 
 +
 
 +
Once OpenVPN connection is established you will see successful pop-up message.
  
  
[[File:Openvpn-linux-network-manager-005b.jpg]]
+
[[File:N.linux ovpnnet6.2.jpg|border]]
  
  
[[File:Openvpn-linux-network-manager-005c.jpg]]
 
  
 +
You can check and confirm your IP address. http://www.astrill.com/what-is-my-ip
  
[[File:Openvpn-linux-network-manager-005d.jpg]]
 
  
 +
[[File:N.linux ovpnnet6.3.jpg|border]]
  
  
 
----
 
----

Latest revision as of 18:23, 20 May 2018

Step 1

First open Terminal, and use this command to install the OpenVPN Network Manager plugin:

sudo apt-get install network-manager-openvpn openvpn


N.linux ovpnnet1.jpg

Step 2

Login to Members area, and create and download a certificate for OpenVPN with configuration files. Click on Members, login to your account, then click VPN Services, and then click on OpenVPN certificates generation.

https://members.astrill.com/tools/openvpn-certificates


N.linux ovpnnet2.jpg

Step 3

Open Astrill-ubuntu.zip file you just downloaded, and pick a server and extract the OVPN file (in this example 27-USA-Seattle-1.ovpn).


N.linux ovpnnet3.1.jpg


Then make 4 copies of 27-USA-Seattle-1.ovpn file, and rename them and edit them accordingly:

Text between <ca></ca> tags goes into ca.crt file

Text between <cert></cert> tags goes into user.crt file

Text between <key></key> tags goes into private.key file

Text between <tls-auth></tls-auth> tags goes into tls.key file


N.linux ovpnnet3.2.jpg


Step 4

Open Network Manager, and then click on Add button to create new connection.

N.linux ovpnnet4.1.jpg


Select OpenVPN for connection type, and then click on Create... button to create new OpenVPN connection.

N.linux ovpnnet4.2.jpg



Step 5

On VPN tab, you need to set the following:

Connection name: Astrill VPN

Gateway: <VPN Server IP address>

Authentication Type: Certificates (TLS)

User Certificate: user.crt

CA Certificate: ca.crt

Private Key: private.key


Then click on Advanced... button for more configuration options.


N.linux ovpnnet5.1.jpg


On General tab, you need to set the following:

Use custom gateway port: tick and set 8292

Use LZO data compression: tick


N.linux ovpnnet5.2.jpg


On Security tab, you need to set the following:

Cipher: BF-CBC

HMAC Authentication: SHA-1


N.linux ovpnnet5.3.jpg


On TLS Authentication tab, you need to set the following:

Use additional TSL authentication: ticked

Key File: tls.key

Key Direction: 1


File:N.linux ovpnnet5.4.jpg


Once done, click on OK button and then click on Save button.


Step 6

Now we are ready to start Astrill OpenVPN connection.


N.linux ovpnnet6.1.jpg


Once OpenVPN connection is established you will see successful pop-up message.


N.linux ovpnnet6.2.jpg


You can check and confirm your IP address. http://www.astrill.com/what-is-my-ip


N.linux ovpnnet6.3.jpg