Create an OPENVPN Server in router os 6.11

Hello everybody, i need some help.

We are using several routerboard at our clients side. Since we install VOIP solutions i was trying to understand how to use the routerboard to act as an OPENVPN server in order to connect remote ip phones directly without any other device. Yealink Phones do support OpenVPN connection to remote networks.

I was following this asrticle in the wiki http://wiki.mikrotik.com/wiki/OpenVPN_Configuration_Step_by_Step but I noticed some differences between the instructions given and the response from the routerboard.

For example, when i create a certificate-request from the cli or the winbox, i obtain two files “certificate-request.pem” and “certificate-request-key.pem”.
With these files i am supposed to create a certificate response via CACERT “as shown in the wiki”, but when I try to create a new server certificate CACERT gives me an error becaus “no common name is set”.

In fact nothing is asked when i create a new certificate request except of the first question which is “Template=” and i must enter a number to continue.

Can you help me to set a new openvpn server with r.os 6.11 or above?

tnx to all

If you click on the + sign in System → Certificates, what you are creating is a Template. Fill out all of that info and then issue your request. Alternatively, you can use this method provided by Easy RSA
https://openvpn.net/index.php/open-source/documentation/howto.html#pki

Thanks a lot… I was stuck at that point for 3 days…
i will try with your suggestions…

i find very difficult to understand the mechanism of certificates…
the more I try, the more i get Stuck…

now i’m very very very very very very very frustrated

dpal80

I had tried to do the same thing a year or so ago and the result was that the phone can’t send a username and password that the Mikrotik was willing to understand and the Mikrotik won’t allow certificate only authentications.

YMMV but it didn’t work for us.

Ryan