Help Center/
Virtual Private Network/
User Guide/
P2C VPN/
P2C VPN Client Management/
Configuring a Linux Client/
Red Hat Enterprise Linux
Updated on 2025-05-14 GMT+08:00
Red Hat Enterprise Linux
Version Requirements
Table 1 lists the client versions supported by Red Hat Enterprise Linux.
Procedure
- On Windows, download lib64pkcs11-helper1.
- Upload the downloaded .rpm installation package to a directory on Red Hat Enterprise Linux using Xftp. In this example, the file is uploaded to the /opt/ directory.
- Log in to the Red Hat Enterprise Linux system as the root user and open the CLI.
- Run the following command to go to the directory where the installation package is stored:
cd /opt/
- Run the following command to install lib64pkcs11-helper1:
yum install lib64pkcs11-helper1-1.30.0-1-omv2390.x86_64.rpm
If the following information is displayed, lib64pkcs11-helper1 is successfully installed:Updating Subscription Management repositories. Unable to read consumer identity This system is not registered with an entitlement server. You can use "rhc" or "subscription-manager" to register. ... ... ... Installed: lib64pkcs11-helper1-1.30.0-1.x86_64 Complete!
- Run the following command to check the OpenVPN version:
openvpn --version
The following information is displayed:
OpenVPN 2.5.11 x86_64-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Jul 18 2024 library versions: OpenSSL 3.2.2 4 Jun 2024, LZO 2.10
- If the OpenVPN version is displayed, go to 4.
- If no OpenVPN version is displayed, perform the following operations to install OpenVPN:
- On Windows, download OpenVPN.
- Upload the downloaded .rpm installation package to a directory on Red Hat Enterprise Linux using Xftp. In this example, the file is uploaded to the /opt/ directory.
- Run the following command to install OpenVPN:
yum install openvpn-2.5.11-1.el9.x86_64.rpm
If the following information in bold is displayed, OpenVPN is successfully installed:Updating Subscription Management repositories. Unable to read consumer identity ... ... ... Is this ok [y/N]: y # Enter y. ... ... ... Installed: openvpn-2.5.11-1.el9.x86_64 Complete!
- Run the following command again to check the OpenVPN version:
Information similar to the following is displayed:
OpenVPN 2.5.11 x86_64-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Jul 18 2024 library versions: OpenSSL 3.2.2 4 Jun 2024, LZO 2.10
- Download the client configuration file on a Windows system.
- Log in to the management console.
- Click
in the upper left corner and select the desired region and project. - Click
in the upper left corner, and choose . - In the navigation pane on the left, choose .
- Click the P2C VPN Gateways tab, and click Download Client Configuration in the Operation column of the target VPN gateway.
The downloaded client configuration file is client_config.zip.
- Decompress client_config.zip to a specified directory, for example, D:\.
After the decompression, the client_config.ovpn and client_config.conf files are generated.
- Open the client_config.conf file using Notepad or Notepad++.
- Add the client certificate and private key to the file.
Enter the client certificate content and the corresponding private key in between <cert></cert> and <key></key> tags, respectively.
<cert> -----BEGIN CERTIFICATE----- Client certificate content -----END CERTIFICATE----- </cert> <key> -----BEGIN PRIVATE KEY----- Client private key -----END PRIVATE KEY----- </key>
- (Optional) Comment out disable-dco. Perform this step only when OpenVPN 2.5 or earlier is used.
- Press Ctrl+F to search for and locate disable-dco.
- Enter # in front of the line where disable-dco is located to comment out the line.
... ... # disable-dco ... ...
- Save the .conf configuration file.
- Upload the .conf configuration file to the Red Hat Enterprise Linux system using Xftp. In this example, the file is uploaded to the /opt/ directory.
- Run the following command to go to the directory where the client configuration file is stored:
cd /opt/
- Run the following command to start the OpenVPN client and connect to the VPN gateway:
openvpn --config /opt/openvpn_config_user-01.conf
If the following information in bold is displayed, the OpenVPN connection is successfully established:
2025-02-27 22:18:30 OpenVPN 2.5.11 x86_64-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Jul 18 2024 2025-02-27 22:18:30 library versions: OpenSSL 3.2.2 4 Jun 2024, LZO 2.10 ... ... ... 2025-02-27 22:18:32 Initialization Sequence Completed
- Run the following command to verify the connectivity:
ping XX.XX.XX.XX
XX.XX.XX.XX indicates the private IP address of the ECS to be connected. Replace it with the actual private IP address.
If information similar to the following is displayed, the client can communicate with the ECS:
64 bytes from XX.XX.XX.XX: icmp_seq=1 ttl=63 time=1.27 ms 64 bytes from XX.XX.XX.XX: icmp_seq=2 ttl=63 time=1.36 ms 64 bytes from XX.XX.XX.XX: icmp_seq=3 ttl=63 time=1.40 ms 64 bytes from XX.XX.XX.XX: icmp_seq=4 ttl=63 time=1.29 ms 64 bytes from XX.XX.XX.XX: icmp_seq=5 ttl=63 time=1.35 ms 64 bytes from XX.XX.XX.XX: icmp_seq=6 ttl=63 time=1.52 ms
Parent topic: Configuring a Linux Client
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
The system is busy. Please try again later.
For any further questions, feel free to contact us through the chatbot.
Chatbot
