vstart GW1 --eth0=internet --eth1=site1 -M16
vstart GW2 --eth0=internet --eth1=site2 -M16
vstart GW3 --eth0=internet --eth1=site3 -M16

#configurazione GW1:

ifconfig eth0 160.80.85.1
ifconfig eth1 192.168.1.1


#configurazione GW2:

ifconfig eth0 160.80.85.2
ifconfig eth1 192.168.2.1

#configurazione GW3:

ifconfig eth0 160.80.85.3
ifconfig eth1 192.168.3.1

#*****Generazione chiavi*****

#da qualsiasi GW
cd /usr/share/doc/openvpn/examples/easy-rsa/2.0
. ./vars
./build-ca
./build-key-server GW1 
./build-key-server GW2
./build-key-server GW3
./build-key GW1
./build-key GW2
./build-key GW3
./build-dh

cd keys
cp GW1* /hosthome/OPEN_VPN_prova/GW1
cp GW2* /hosthome/OPEN_VPN_prova/GW2
cp GW3* /hosthome/OPEN_VPN_prova/GW3

cp dh1024.pem /hosthome/OPEN_VPN_prova/GW1
cp dh1024.pem /hosthome/OPEN_VPN_prova/GW2
cp dh1024.pem /hosthome/OPEN_VPN_prova/GW3

cp ca.crt /hosthome/OPEN_VPN_prova/GW1
cp ca.crt /hosthome/OPEN_VPN_prova/GW2
cp ca.crt /hosthome/OPEN_VPN_prova/GW3

cd ..
cd ..
cd ..
cd samples-config-files/
cp ./server.conf.gz /hosthome/OPEN_VPN_prova/GW1
cp ./server.conf.gz /hosthome/OPEN_VPN_prova/GW2
cp ./server.conf.gz /hosthome/OPEN_VPN_prova/GW3
cp ./client.conf /hosthome/OPNE_VPN_prova/GW1
cp ./client.conf /hosthome/OPNE_VPN_prova/GW2
cp ./client.conf /hosthome/OPNE_VPN_prova/GW3

#Modificare i relativi file server.conf (estratto da server.conf.gz)
#In GW1 : cert server.crt -> cert GW1.crt 
	  key server.key -> server GW1.key
aggiungere: push "route 192.168.1.0 255.255.255.0"
	    push "route 192.168.2.0 255.255.255.0"
	    push "route 192.168.3.0 255.255.255.0"
#In GW2 : cert server.crt->cert GW2.crt
	  key server.key -> server GW2.key
aggiungere: push "route 192.168.1.0 255.255.255.0"
	    push "route 192.168.2.0 255.255.255.0"
	    push "route 192.168.3.0 255.255.255.0"
#In GW3 : cert server.crt->cert GW3.crt
	  key server.key -> server GW3.key
aggiungere: push "route 192.168.1.0 255.255.255.0"
	    push "route 192.168.2.0 255.255.255.0"
	    push "route 192.168.3.0 255.255.255.0"

modificare la riga successiva a client-config-dir ccd
per il GW1: route 192.168.2.0
	    route 192.168.3.0
	    aggiungere: keepalive 10 30

per il GW2: route 192.168.1.0
	    route 192.168.3.0
	    aggiungere: keepalive 10 30

per il GW3: route 192.168.1.0
	    route 192.168.2.0
	    aggiungere: keepalive 10 30

#***In ogni cartella GW creare la cartella ccd***
ccd in GW1: file nominato GW2 in cui scrivere iroute 192.168.2.0 255.255.255.0
	    file nominato GW3 in cui scrivere iroute 192.168.3.0 255.255.255.0

ccd in GW2: file nominato GW1 in cui scrivere iroute 192.168.1.0 255.255.255.0
	    file nominato GW3 in cui scrivere iroute 192.168.3.0 255.255.255.0

ccd in GW3: file nominato GW1 in cui scrivere iroute 192.168.1.0 255.255.255.0
	    file nominato GW2 in cui scrivere iroute 192.168.2.0 255.255.255.0
#***Modificare i file client.conf e rinominarli***
In GW1 client1.conf: remote-my-server-1 1194 -> remote 160.80.85.2 1194
					        remote 160.80.85.3 1194
 		     cert client.crt -> cert GW1.crt
	      	     key client.key -> key GW1.key

In GW2 client2.conf: remote-my-server-1 1194 -> remote 160.80.85.1 1194
					        remote 160.80.85.3 1194
 		     cert client.crt -> cert GW2.crt
	      	     key client.key -> key GW2.key

In GW3 client1.conf: remote-my-server-1 1194 -> remote 160.80.85.1 1194
					        remote 160.80.85.2 1194
 		     cert client.crt -> cert GW3.crt
	      	     key client.key -> key GW3.key

