diff options
| author | Christian Poessinger <christian@poessinger.com> | 2020-03-22 11:48:31 +0100 |
|---|---|---|
| committer | Christian Poessinger <christian@poessinger.com> | 2020-03-22 11:48:31 +0100 |
| commit | f9308dad8350092a938f1a15076a9968f785e5c0 (patch) | |
| tree | 074eb27b5b275c0ba569ed8eeb21bee4c523d50f /docs/vpn | |
| parent | bf94e7dd7bcf7c01dcf5c4f90d9cfc9c116cb00c (diff) | |
| download | vyos-documentation-f9308dad8350092a938f1a15076a9968f785e5c0.tar.gz vyos-documentation-f9308dad8350092a938f1a15076a9968f785e5c0.zip | |
sstp: adjust ssl certificate path
Diffstat (limited to 'docs/vpn')
| -rw-r--r-- | docs/vpn/sstp.rst | 24 |
1 files changed, 11 insertions, 13 deletions
diff --git a/docs/vpn/sstp.rst b/docs/vpn/sstp.rst index c5eb5dbf..ced0a0ba 100644 --- a/docs/vpn/sstp.rst +++ b/docs/vpn/sstp.rst @@ -1,8 +1,8 @@ -.. _sstp_server: +.. _sstp: -########### -SSTP Server -########### +#### +SSTP +#### :abbr:`SSTP (Secure Socket Tunneling Protocol)` is a form of :abbr:`VPN (Virtual Private Network)` tunnel that provides a mechanism to transport PPP @@ -19,9 +19,10 @@ local and RADIUS authentication. As SSTP provides PPP via a SSL/TLS channel the use of either publically signed certificates as well as a private PKI is required. -.. note:: All certificates should be stored on VyOS under - ``/config/user-data/sstp``. If certificates are not stored unt ``/config`` - they will not be migrated during a software update. +.. note:: All certificates should be stored on VyOS under ``/config/auth``. If + certificates are not stored in the ``/config`` directory they will not be + migrated during a software update. + Self Signed CA and Certificates =============================== @@ -248,9 +249,6 @@ Example * Use local user `foo` with password `bar` * Client IP addresses will be provided from pool `192.0.2.0/25` -Use <tab> to setup the ``set ssl...``, it automatically -looks for all files and directories in ``/config/user-data/sstp``. - .. code-block:: none set vpn sstp authentication local-users username foo password 'bar' @@ -259,8 +257,8 @@ looks for all files and directories in ``/config/user-data/sstp``. set vpn sstp network-settings client-ip-settings subnet '192.0.2.0/25' set vpn sstp network-settings name-server '10.0.0.1' set vpn sstp network-settings name-server '10.0.0.2' - set vpn sstp ssl ca-cert-file 'ca.crt' - set vpn sstp ssl cert-file 'server.crt' - set vpn sstp ssl key-file 'server.key' + set vpn sstp ssl ca-cert-file '/config/auth/ca.crt' + set vpn sstp ssl cert-file '/config/auth/server.crt' + set vpn sstp ssl key-file '/config/auth/server.key' .. include:: ../common-references.rst |