Hi,
as promised I have made a script to install Openvpn as a server and let you easily create windows, mac and linux clients from it.
This script installs all the right software, preps the server config (after asking questions) and then you can generate keys, install.
Assumed knowledge/software:
You need to be familiar with SSH into your My Book Live and run basic shell commands
You need to be able to apt-get install stuff (there is probably another howto for this)
Networking and VPN concepts are also a pre-requisite. Don’t do this if you don’t know what you are doing.
You need to understand how openvpn works and how to do a port forward on your router.
Sample Diagram of the setup here:
http://www.lucidchart.com/publicSegments/view/4f9ab640-b5e8-4ad9-8ad0-6dd80a02c999/image.png
You can download the package script here:
http://dl.dropbox.com/u/5627587/mbl/openvpn-server-wdlive-0.1.tar.gz
Or ssh into your MBL and wget like so:
wget http://dl.dropbox.com/u/5627587/mbl/openvpn-server-wdlive-0.1.tar.gz
then extract it and run ./install.sh
tar zxvf openvpn-server-wdlive-0.1.tar.gz
cd openvpn-server-wdlive-0.1
./install.sh
Please answer the questions carefully. If you make a mistake try do CTRL+C and run ./install.sh again.
Once its installed and it says the server restarted successfully, you can generate a certificate with the ‘ovs’ command
ovs help will help you
ovs build-windows-client
will build a zip file with a config file and a cert file you can drop into the config directory on windows
likewise for mac and linux (you can use the mac one
ovs build-mac-client
Then you can connect and browse as per the network diagram.
ovs status will show you who is connected and their current throughput (uses ifstat)
This is really quick and dirty and I have done some basic testing. Don’t blame me if it breaks your stuff.
Happy to answer any questions.
Enjoy strongly encrypted remote connections to your mybooklive.
And yes, as long as you portfoward 1194 UDP only, this should be rock solid in terms of security.
I would have used a 2048bit DHparams key, but it would take nearly 20mins to generate on this hardware.