Re: [Openvpn-users] openvpn-2.0_beta4 --mode server in Bridged configuration

[Adam P. <apa...@be...>]

On Monday, June 14, 2004 1:48 PM [GMT-5=EST], I wrote to Mathias Sundman
<ma...@ni...> regarding the creation of RSA certs with the help from
of the easy-rsa scripts:

[SNIP]

> I have gone through the procedures outlined in ../easy-rsa/README;
> although I stopped at the "BUILD A CERTIFICATE SIGNING REQUEST" step
> since I'm pretty sure that I don't need to have my cert signed by a
> root certificate controlled by another individual or orgaization.
>
> At this point, the following files have been created:
>
> [root@OpenVPN my-openvpn-keys]# ls -al
> total 32
> drwx------    2 root     root         4096 Jun 14 17:34 .
> drwxrwxrwx    3 root     root         4096 Jun 14 17:14 ..
> -rw-r--r--    1 root     root         1549 Jun 14 17:15 ca.crt
> -rw-r--r--    1 root     root         1675 Jun 14 17:15 ca.key
> -rw-r--r--    1 root     root          424 Jun 14 17:34 dh2048.pem
> -rw-r--r--    1 root     root            0 Jun 14 17:14 index.txt
> -rw-r--r--    1 root     root            0 Jun 14 17:15 inter.crt
> -rw-r--r--    1 root     root         1029 Jun 14 17:15 inter.csr
> -rw-r--r--    1 root     root         1675 Jun 14 17:15 inter.key
> -rw-r--r--    1 root     root            3 Jun 14 17:14 serial
>
>
> ...and I am unsure of what to do next.  It doesn't appear that I have
> everything required for a --tls-server config -- shouldn't there be
> one group of files for the client(s) and one group of files for the
> server?

Upon further investigation, it looks like I will need to use the
"./build-key [name]" script to generate the new certs.  However, I can't
seem to get this to work:

[root@openVPN easy-rsa]# ./build-key server
you must define KEY_DIR

...any pointers?

-Adam