下载LZO和OpenVPN以及IPv6 Patch并编译安装:
wget http://www.oberhumer.com/opensource/lzo/download/lzo-2.04.tar.gz
wget http://openvpn.net/release/openvpn-2.1.1.tar.gz
wget https://github.com/downloads/jjo/openvpn-ipv6/openvpn-2.1.1-ipv6-0.4.11.patch.gz --no-check-certificate
gunzip -d openvpn-2.1.1-ipv6-0.4.11.patch.gz
tar zxvf *.tar.gz
patch –p0 < openvpn-2.1.1-ipv6-0.4.11.patch
( Tips:
如果patch文件这样生成 diff –uN from-file to-file > to-file.patch
则patch –p0 < to-file.patch
如果patch文件这样生成 diff –uNr from-docu to-docu >to-docu.patch
则patch –p1 < to-docu.patch)
cd lzo-2.04 && ./configure && make && make install
cd ../openvpn-2.1.1 && ./configure && make && make install
cd .. && cp -r ./openvpn-2.1.1/easy-rsa/ -r /etc/openvpn #拷贝配置文件到/etc/openvpn
之后就是开始生成证书文件,私匙文件等步骤。
Windows用户需要下载官网安装包.
对于需要使用VPN Over IPv6的童鞋,下载IPv6 Patched的openvpn.exe(https://github.com/downloads/jjo/openvpn-ipv6/openvpn.exe-2.1.1-ipv6-0.4.11.zip)替换掉c:\Program Files\OpenVPN\bin相应文件。
OpenVPN 2.3已经解决了IPv6和Windows x64的问题了,再也不需要任何patch了.
-----------------------------------------------------------------------------------------
(OpenVPN 2.3.0 -- released on 2013.01.08
This release fixes two bugs present in 2.3-rc2 and earlier. It includes major changes compared to latest 2.2.x ("oldstable") release:
Instructions for verifying the signatures are available here.
This release is also available in our own software snapshot repositories for Debian, Ubuntu, Fedora 16 and RHEL/CentOS/Scientific Linux 6. Supported architectures are i386 and amd64/x86_64. For details. look here.
Note that easy-rsa is no longer bundled with OpenVPN source code archives. To get it, visit the easy-rsa page on GitHub.
from http://openvpn.net/index.php/download/community-downloads.html 或
http://openvpn.net/index.php/open-source/downloads.html)
wget http://www.oberhumer.com/opensource/lzo/download/lzo-2.04.tar.gz
wget http://openvpn.net/release/openvpn-2.1.1.tar.gz
wget https://github.com/downloads/jjo/openvpn-ipv6/openvpn-2.1.1-ipv6-0.4.11.patch.gz --no-check-certificate
gunzip -d openvpn-2.1.1-ipv6-0.4.11.patch.gz
tar zxvf *.tar.gz
patch –p0 < openvpn-2.1.1-ipv6-0.4.11.patch
( Tips:
如果patch文件这样生成 diff –uN from-file to-file > to-file.patch
则patch –p0 < to-file.patch
如果patch文件这样生成 diff –uNr from-docu to-docu >to-docu.patch
则patch –p1 < to-docu.patch)
cd lzo-2.04 && ./configure && make && make install
cd ../openvpn-2.1.1 && ./configure && make && make install
cd .. && cp -r ./openvpn-2.1.1/easy-rsa/ -r /etc/openvpn #拷贝配置文件到/etc/openvpn
之后就是开始生成证书文件,私匙文件等步骤。
Windows用户需要下载官网安装包.
对于需要使用VPN Over IPv6的童鞋,下载IPv6 Patched的openvpn.exe(https://github.com/downloads/jjo/openvpn-ipv6/openvpn.exe-2.1.1-ipv6-0.4.11.zip)替换掉c:\Program Files\OpenVPN\bin相应文件。
OpenVPN 2.3已经解决了IPv6和Windows x64的问题了,再也不需要任何patch了.
-----------------------------------------------------------------------------------------
(OpenVPN 2.3.0 -- released on 2013.01.08
This release fixes two bugs present in 2.3-rc2 and earlier. It includes major changes compared to latest 2.2.x ("oldstable") release:
- Full IPv6 support
- SSL layer modularised, enabling easier implementation for other SSL libraries
- PolarSSL support as a drop-in replacement for OpenSSL
- New plug-in API providing direct certificate access, improved logging API and easier to extend in the future
- Added 'dev_type' environment variable to scripts and plug-ins - which is set to 'TUN' or 'TAP'
- New feature: --management-external-key - to provide access to the encryption keys via the management interface
- New feature: --x509-track option, more fine grained access to X.509 fields in scripts and plug-ins
- New feature: --client-nat support
- New feature: --mark which can mark encrypted packets from the tunnel, suitable for more advanced routing and firewalling
- New feature: --management-query-proxy - manage proxy settings via the management interface (supercedes --http-proxy-fallback)
- New feature: --stale-routes-check, which cleans up the internal routing table
- New feature: --x509-username-field, where other X.509v3 fields can be used for the authentication instead of Common Name
- Improved client-kill management interface command
- Improved UTF-8 support - and added --compat-names to provide backwards compatibility with older scripts/plug-ins
- Improved auth-pam with COMMONNAME support, passing the certificate's common name in the PAM conversation
- More options can now be used inside <connection> blocks
- Completely new build system, enabling easier cross-compilation and Windows builds
- Much of the code has been better documented
- Many documentation updates
- Plenty of bug fixes and other code clean-ups
- Uses OpenSSL 1.0.1e that includes a proper fix for CVE-2013-0169
- Fixes broken silent installations (Trac #249)
- Installs TAP utilities by default (Trac #255)
- Fixes broken man-page link in the Start menu
- Adds and updates other Start menu documentation links
- Fix OpenVPN-GUI crash on 64 bit Windows (Trac #247)
| Source Tarball | openvpn-2.3.0.tar.gz | GnuPG Signature |
| Source Zip | openvpn-2.3.0.zip | GnuPG Signature |
| Windows Installer (32-bit) | openvpn-install-2.3.0-I005-i686.exe | GnuPG Signature |
| Windows Installer (64-bit) | openvpn-install-2.3.0-I005-x86_64.exe | GnuPG Signature |
Instructions for verifying the signatures are available here.
This release is also available in our own software snapshot repositories for Debian, Ubuntu, Fedora 16 and RHEL/CentOS/Scientific Linux 6. Supported architectures are i386 and amd64/x86_64. For details. look here.
Note that easy-rsa is no longer bundled with OpenVPN source code archives. To get it, visit the easy-rsa page on GitHub.
from http://openvpn.net/index.php/download/community-downloads.html 或
http://openvpn.net/index.php/open-source/downloads.html)
