1. Install the openvpn package. 2. In the server's /etc/openvpn directory, run the following command to generate a static key:

3. Copy this static key to the clients /etc/openvpn directory using a secure channel like scp or sftp. 4. On the server, create a new /etc/openvpn/tun0.conf file and add the following:

5. On the client, create a new /etc/openvpn/tun0.conf file and add the following:

6. On the server's firewall, open up UDP 1194. 7. On both devices, add a new VPN zone to represent tun0 and create a default policy for it. This means adding something to the following files in /etc/shorewall:

8. Bear in mind that 90% of all connection problems encountered by new OpenVPN users are firewall-related. 9. Start OpenVPN by hand on both sides with the following command:

10. To verify that the VPN is running, you should be able to ping 10.9.8.2 from the server and 10.9.8.1 from the client.