There still doesn't appear to be an OpenVPN tutorial on the wiki though, only a PPTP one. http://elinux.org/RPi_Tutorials
I'm trying to setup an OpenVPN server but followed a couple of different guides
A) http://raspberrypi-hacks.com/29/turn-yo ... pn-server/
B) http://raspberrypihelp.net/tutorials/1- ... r-tutorial
There doesn't appear to be any need to copy the keys from /easy-rsa/keys (that's the location in the above guides) as long as the openvpn.conf points to the files in that location.
I followed guide B) and just referred to A) to confirm that it appeared to be correct. However, the two guides differ in some respects, such as at step eleven in B) it tells you to do some stuff with crontab, which A) doesn't refer to at all. Then A) tells you to add these lines to /etc/rc.local, which B) doesn't.
iptables -t nat -A INPUT -i eth0 -p udp -m udp --dport 1194 -j ACCEPT
iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j SNAT --to-source RASPBERRY.PI.IP.ADRESS
and B) says to do this
sudo iptables -t nat -A POSTROUTING -s 10.0.0.0/8 ! -d 10.0.0.0/8 -o eth0 -j MASQUERADE
whereas A) says this
iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j SNAT --to [ipadres rpi]
So I'm not really sure if I've got it setup right and I also need to make sure that it's purely for allowing remote clients to connect through to the Internet when using unsafe WiFi hotspots and that it doesn't allow access to any of my PCs on my LAN.
I also wonder if this is necessary for those of us who are using Dynamic IP services (probably most of us I imagine) and if so, maybe it could be incorporated into any tutorial someone might be working on, with a better explanation of exactly what files need to be edited, etc as it's not that clear http://openvpn.net/index.php/open-sourc ... namic.html