How to Configure OpenVPN Client on Elastix4 (CentOS 7) to Connect to MikroTik OVPN

Connecting your Elastix server to a MikroTik OpenVPN server can greatly enhance network security and more features. In this guide, we will walk you through the step-by-step process to set up the OpenVPN client on Elastix 4.0.76 running CentOS 7.

Step 1: Access Elastix via PuTTy and FileZilla

Connect to your Elastix terminal using PuTTy.
Use FileZilla for SFTP access to transfer files to Elastix.

Step 2: Download Necessary RPM Packages

Download the following RPM packages to your local PC:

OpenVPN: openvpn-2.3.2-4.el7.x86_64.rpm
LZO: lzo-2.06-8.el7.x86_64.rpm
PKCS11 Helper: pkcs11-helper-1.11-3.el7.x86_64.rpm
LZ4: lz4-1.8.3-1.el7.x86_64.rpm

You may use alternate download links if the above sources failed. Below is the alternate download links.

Step 3: Prepare the RPM Files on Elastix

Open PuTTy and run the following commands:

Switch to FileZilla and upload the downloaded RPM files into the /tmp/ovpn/ folder.
Back in PuTTy, install the RPM packages:

Check the OpenVPN version if successfully installed.

openvpn --version

Step 4: Upload MikroTik Certificates

Download the following files from MikroTik:
- ca.crt
- client.crt
- ovpnclient.key
Keep the private key file name as ovpnclient.key, because we will remove the passphrase by renaming the key file.
Upload all three files to Elastix in the /etc/openvpn/ folder.
Remove the passphrase from the private key:

Enter the passphrase 12345678 when prompted.

Secure the private key file:

Step 5: Create OpenVPN Client Configuration

Create the client configuration file:

Paste the following configuration:

client

dev tun

proto tcp

remote <MIKROTIK_PUBLIC_IP> <PORT>

resolv-retry infinite

nobind

persist-key

persist-tun

ca /etc/openvpn/ca.crt

cert /etc/openvpn/client.crt

key /etc/openvpn/client.key

remote-cert-tls server

verb 3

auth-user-pass /etc/openvpn/credentials.txt

auth-nocache

route-nopull

script-security 2

up "/etc/csf/csfpost.sh &"

Replace <MIKROTIK_PUBLIC_IP> and <PORT> with your MikroTik server’s details.

Save and exit the file.

Step 6: Provide VPN Credentials

Create a credentials file for the OpenVPN client:

Add your vpn username and password:

Save and secure the file:

Step 7: Test the VPN Connection

Run the following command to test the connection:

You should see Initialization Sequence Completed, indicating a successful connection.
Verify the tun0 interface and assigned IP:

Step 8: Enable OpenVPN on System Startup

To make OpenVPN auto-connect on reboot:

🎉 Congratulations!

Your Elastix OpenVPN Client is now successfully configured and ready to securely connect to your MikroTik ovpn server.

By frankdocPublished On: October 15th, 2025Categories: Elastix IP PBX, MikroTik RouterOS0 CommentsTags: elastix vpn client, mikrotik ovpn elastix, openvpnViews: 43