2016-08-04 18:16:42 +00:00
|
|
|
# Quick Start with docker-compose
|
|
|
|
|
|
|
|
|
|
* Add a new service in docker-compose.yml
|
|
|
|
|
|
|
|
|
|
version: '2'
|
|
|
|
|
services:
|
|
|
|
|
openvpn:
|
|
|
|
|
cap_add:
|
|
|
|
|
- NET_ADMIN
|
|
|
|
|
image: kylemanna/openvpn
|
|
|
|
|
ports:
|
|
|
|
|
- "1194:1194/udp"
|
|
|
|
|
restart: always
|
|
|
|
|
volumes:
|
|
|
|
|
- ./openvpn/conf:/etc/openvpn
|
|
|
|
|
|
|
|
|
|
* Initialize the configuration files and certificates
|
|
|
|
|
|
|
|
|
|
docker-compose run --rm openvpn ovpn_genconfig -u udp://VPN.SERVERNAME.COM
|
|
|
|
|
docker-compose run --rm openvpn ovpn_initpki
|
|
|
|
|
|
|
|
|
|
* Fix ownership (depending on how to handle your backups, this may not be needed)
|
|
|
|
|
|
|
|
|
|
sudo chown -R $(whoami): ./openvpn
|
|
|
|
|
|
|
|
|
|
* Start OpenVPN server process
|
|
|
|
|
|
2016-08-04 19:17:24 +00:00
|
|
|
docker-compose up -d openvpn
|
2016-08-04 18:16:42 +00:00
|
|
|
|
|
|
|
|
* Generate a client certificate without a passphrase
|
|
|
|
|
|
2016-08-04 19:17:24 +00:00
|
|
|
docker-compose run --rm openvpn easyrsa build-client-full CLIENTNAME nopass
|
2016-08-04 18:16:42 +00:00
|
|
|
|
|
|
|
|
* Retrieve the client configuration with embedded certificates
|
|
|
|
|
|
|
|
|
|
docker-compose run --rm openvpn ovpn_getclient CLIENTNAME > CLIENTNAME.ovpn
|
|
|
|
|
|
|
|
|
|
## Debugging Tips
|
|
|
|
|
|
|
|
|
|
* Create an environment variable with the name DEBUG and value of 1 to enable debug output (using "docker -e").
|
|
|
|
|
|
|
|
|
|
docker-compose run -e DEBUG=1 openvpn
|
