Beruflich Dokumente
Kultur Dokumente
>>eth1:172.20.1.1>>>>to local
yaitu 192.168.1.1).
1. konfigurasi server.conf (file pada openvpn server)>>>pada router
#################################################
# Sample OpenVPN 2.0 config file for #
# multi-client server. #
# #
# This file is for the server side #
# of a many-clients <-> one-server #
# OpenVPN configuration. #
# #
# OpenVPN also supports #
# single-machine <-> single-machine #
# configurations (See the Examples page #
# on the web site for more info). #
# #
# This config should work on Windows #
# or Linux/BSD systems. Remember on #
# Windows to quote pathnames and use #
# double backslashes, e.g.: #
# "C:\\Program Files\\OpenVPN\\config\\foo.key" #
# #
# Comments are preceded with '#' or ';' #
#################################################
# #
# #
##############################################
client
# the server.
;dev tap
dev tun
# Windows needs the TAP-Win32 adapter name
;dev-node MyTap
# on the server.
;proto tcp
proto udp
remote 172.16.1.2 1194 ======== ini adalah ip yang mengarah ke router (yang
===============================menghubungkan server dmz dengan router)
;remote-random
# Keep trying indefinitely to resolve the
resolv-retry infinite
nobind
;user nobody
;group nogroup
persist-key
persist-tun
# authentication.
;mute-replay-warnings
# SSL/TLS parms.
ca ca.crt
cert client.crt
key client.key
# http://openvpn.net/howto.html#mitm
ns-cert-type server
;tls-auth ta.key 1
;cipher x
comp-lzo
verb 3
;mute 20
Ip tunnel dmz server (yang di dapat dari openvpn server /router)
# #
# #
##############################################
client
;dev tap
dev tun
;dev-node MyTap
# on the server.
;proto tcp
proto udp
;remote-random
resolv-retry infinite
nobind
;user nobody
;group nogroup
persist-key
persist-tun
# authentication.
;mute-replay-warnings
# SSL/TLS parms.
ca ca.crt
cert client.crt
key client.key
# http://openvpn.net/howto.html#mitm
ns-cert-type server
;tls-auth ta.key 1
;cipher x
comp-lzo
verb 3
# Silence repeating messages
;mute 20
Ping dari windows clinet (sedang memunyai ip tunnel dari vpn) ke server openvpn
Ping dari client (yang sedang mempunyai ip tunnel) ke dmz server (yang sedang mempunyai
ip tunnel)
Ip address dmz server yang asli 172.16.1.1 tidak bisa di akses ???? apa
memang demikian ??? konfig mana yang salah ?? dan konfig apa yang
perlu dan harus saya tambahkan ... oh iya itu di putty table routing
pada router,,