Dec 08
Building VPN Connections from any Windows client against IPCop running Zerina is actually very straightforward. Doing that from a Ubuntu client is a little bit tricky since ubuntu’s network manager cannot handle Zerina’s .p12 (pkcs) files.
- Install network-manager-openvpn using synaptic
- I know it’s not linux style – but do a reboot know – just to insure that all services are running. I had no success with the next steps without rebooting. Or I’ve been too lazy searching for the services that needed a restart.
- Download the .p12 file from IPCop or ask someone to do it for you.
- Now you have to extract 3 certificate files out of your .p12 file.
openssl pkcs12 -nocerts -in (filename).p12 -out userkey.pem
openssl pkcs12 -nokeys -clcerts -in (filename).p12 -out usercert.pem
openssl pkcs12 -nokeys -cacerts -in (filename).p12 -out userca.pem
Or download that script and call it with pkcs2certs.sh your-username.p12 and it’ll create the required files for you. - Now place the files into your vpn configuration and make the settings match your zerina configuration (cipher, compression etc.)
If you want to remove the passphrase from userkey.pem then issue a
openssl rsa -in userkey.pem -out userkey-nopass.pem