nix pkg manager debian
use Nix package manager on Debian
Skip to content
Blogs
KVM Qemu Windows 11
How to install Windows 11 in KVM QEMUOpenVPN Server
OpenVPN Server
So just a guide based on explanations from Google Gemini
The following would be a set of commands and expected responses
Step 1 Install
shsudo apt install openvpn easy-rsa -yStep 2 Initialize the PKI Directory
Recommended: Create and secure a new directory for your CA
shmake-cadir ~/openvpn-pki cd ~/openvpn-pkiStep 3 Create the Certificate Authority (CA)
sh# Initialize the PKI environment ./easyrsa init-pkiResponse
shinit-pki' complete; you may now create a CA or requests. Your newly created PKI dir is: * /home/atle/openvpn-pki/pki Using Easy-RSA configuration: * /home/atle/openvpn-pki/varsBuild the CA. You will be prompted to enter a CA Passphrase. Make this secure and write it down.
sh./easyrsa build-caResponse
shCA creation complete. Your new CA certificate is at: * /home/atle/openvpn-pki/pki/ca.crtStep 4 Generate Server Keys and Certificate
Generate the server key and CSR. 'server' is the Common Name (CN). ./easyrsa gen-req server nopass
shPrivate-Key and Public-Certificate-Request files created. Your files are: * req: /home/atle/openvpn-pki/pki/reqs/server.req * key: /home/atle/openvpn-pki/pki/private/server.keSign the server certificate using the CA. You will be prompted for the CA Passphrase.
sh./easyrsa sign-req server serverResponse
sh* /home/atle/openvpn-pki/vars Please check over the details shown below for accuracy. Note that this request has not been cryptographically verified. Please be sure it came from a trusted source or that you have verified the request checksum with the sender. You are about to sign the following certificate: Requested CN: 'small' Requested type: 'server' Valid for: '825' days subject= commonName = small Type the word 'yes' to continue, or any other input to abort. Confirm requested details: yes Using configuration from /home/atle/openvpn-pki/pki/1fa12698/temp.1.1 Enter pass phrase for /home/atle/openvpn-pki/pki/private/ca.key: Check that the request matches the signature Signature ok The Subject's Distinguished Name is as follows commonName :ASN.1 12:'small' Certificate is to be certified until Dec 30 21:42:44 2027 GMT (825 days) Write out database with 1 new entries Database updated NoticeDebian Install with EFI
How to install Debian Trixie with secure boot partitionGPG Master and Subkeys
Set up a master key and subkeys with GPGDebian cleanup
How to clean up Debian after upgradesTOR for Bitcoin
Run TOR with SOCKS proxyBitcoin LND
How to run and operate a Bitcoind LND nodeArch Linux install
My experience with installing Arch LinuxBitcoin C-lightning
How to run and operate a C lightning nodeBitcoin recover keys
How to recover Bitcoin keysFreeBSD Samsung Cronos
How to install FreeBSD alongside Linux and dual boot from GRUB with EFI enabled on a Samsung CronosFreeBSD install
How to install FreeBSD and get some basic stuff up and runningElastic setup Linux
Small setup guide for elastic search on LinuxDocker dotnet core
How to use docker with dotnet core.NET Core cli commands
Collection of typical operations on .NET (dotnet) CLI (command-line interface)ES6 modules
ES6 modules and how to use them correctlyJS useful tricks
JS tricks and standard functions that is not so commonly usedArch Linux bluetooth
How to pair and connect bluetooth devices to your Arch Linux computerArch Linux MBA 2013
How to install Arch Linux on a Macbook Air 2013 modelGentoo Linux on Samsung Cronos
My experience with install Gentoo on a Samsung Cronos laptop and runningKVM Qemu Virt
Commands for controlling KVM Qemu VMsLinux disk management
Linux partitioning, fstab and raid with mdadm, how to monitor and setupMount smb Linux
How to mount a smb file share in LinuxLinux Network
Commands and recipes for network operationsLinux users and groups
Typical linux user and groups operationsnmcli how to use
Network manager command line interface how to do typical operationsDIY router rPi ipv4
How to create your own router on a Raspberry Pi 3D-Link DCS-5222L notes
D-Link DCS-5222L notes on how to upgrade and general usageGPG encryption commands
Most useful commands for encrypting files withusing GNU Privacy Guard (gnupg.org)SQL Server Docker
How you use SQL Server in Linux environment using docker, sqlcmd and VSCodeSSH best practices
How to utilize the security features of ssh and use great features like public key encryptionGIT tricks
GIT tricks that are not so commonly usedUnix tar commond operations
How to extract and create tarballs with gzip or bzip compression in unix or linuxCUPS configure
How to set up CUPS on Unix based systemsRaspberryPi MIDI keyboard
How to leverage a Raspberry PI and a MIDI keyboard