Previous: , Up: User manual  


Example usage

Let’s assume that there is some insecure link between your computer and WiFi-reachable gateway.

Do not forget about setting GOMAXPROC environment variable for using more than one CPU.

As a preparation you have to generate peer directory (register new client) on the server side using utils/newsclient.sh, generate Verifier on client side and place it on the server. Assume that you made those steps.

GNU/Linux IPv4 client-server example:

server% echo "echo tap10" >> peers/CLIENTID/up.sh
server% ip addr add 192.168.0.1/24 dev wlan0
server% tunctl -t tap10
server% ip link set mtu 1432 dev tap10
server% ip addr add 172.16.0.1/24 dev tap10
server% ip link set up dev tap10
server% GOMAXPROC=4 govpn-server -bind 192.168.0.1:1194 -mtu 1472
client% umask 066
client% utils/storekey.sh key.txt
client% ip addr add 192.168.0.2/24 dev wlan0
client% tunctl -t tap10
client% ip link set mtu 1432 dev tap10
client% ip addr add 172.16.0.2/24 dev tap10
client% ip link set up dev tap10
client% ip route add default via 172.16.0.1
client% export GOMAXPROC=4
client% while :; do
    govpn-client -key key.txt -id CLIENTID -iface tap10 \
        -remote 192.168.0.1:1194 -mtu 1472
done

FreeBSD IPv6 client-server example:

server% ifconfig em0 inet6 fe80::1/64
server% GOMAXPROC=4 govpn-server -bind "fe80::1%em0"
client% ifconfig me0 inet6 -ifdisabled auto_linklocal
client% ifconfig tap10
client% ifconfig tap10 inet6 fc00::2/96 mtu 1412 up
client% route -6 add default fc00::1
client% export GOMAXPROC=4
client% while :; do
    govpn-client -key key.txt -id CLIENTID -iface tap10 \
        -remote [fe80::1%me0]:1194
done

Previous: , Up: User manual