How to start a second OpenVPN server?

V

VK2018-09-26 12:40:50

openvpn

VK, 2018-09-26 12:40:50

Friends, tell a noob. On a VPS (OpenVZ, Debian 8/64), OpenVPN is running over UDP. You need to run a second instance of OpenVPN but over TCP, without compression and TLS (in order to make friends with the clumsy, in this respect, RouterOS). You need exactly two processes, because a mobile and PC client "flies" over UDP like a rocket, I can't donate it. And for Mikrotik, you need crookedness on TCP and without certificates.
Now on the server

config:

port 443
proto udp
dev tun
sndbuf 0
rcvbuf 0
ca ca.crt
cert server.crt
key server.key
dh dh.pem
tls-auth ta.key 0
topology subnet
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "redirect-gateway def1 bypass-dhcp"
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
keepalive 10 120
cipher AES-128-CBC
comp-lzo
user nobody
group nogroup
persist-key
persist-tun
status openvpn-status.log
verb 3
crl-verify crl.pem

Please tell me how to start the second OpenVPN process, since this one was installed by a script from Gita, knowledge of Linux is a little more than zero. Which file to go to, which command to add, which directory to copy (if needed), and probably which iptables command? I'll try to figure it out myself with the config for TCP of OpenVPN itself.
Thank you!

Reply

Answer the question

In order to leave comments, you need to log in

1 answer(s)

M

mureevms, 2018-09-26
@VladimirKokarev

In short, copy the existing config and name it, let it be tcp.conf. Change the port and protocol in the new config, and everything else that is required. Then re-read the systemd config:
Start a new instance of OpenVPN using systemctl:
And don't forget to add it to startup:
systemctl enable [email protected]