Help

VPN Client Configuration

If you configure this section, then you don't need to setup the Server section.

If your CA (certificate authority) is on the same computer, make sure you have created your certificates, first. If not, make sure you have copied the following files:

You only need the p12 format if your station is a windows one. For more details on how to export your key in pkcs12 format, see below.


Windows: If you want to export the certificate in pkcs12 format, simply run the /usr/share/naat/scripts/gentestcrtwindows script. Example: /usr/share/naat/scripts/gentestcrtwindows localVPNstation.yourdomain.org This will create the /etc/freeswan/ipsec.d/private/localVPNstation.yourdomain.org.p12 key for windows.


If your server and your CA are different, you might need to copy also /etc/freeswan/ipsec.d/cacerts/ca.crt and /etc/freeswan/ipsec.d/crls/crl.crt


So, on each VPN Linux box, you need at least four files. See above.

Click on to add a new VPN client entry. Once you finished adding your VPN clients, click on the Apply button and then on to restart the IPSec service.

For adding the first client you will need to click on the Next button.