VPN server on Arch Linux

Question

Trying to set up a VPN server on an Arch Linux box. All I want is for it to be usable by OS X and iPhone OS. I'm a noob at VPN and can't seem to have much luck Googling. What software do I need to install and what else do I need to configure?

score 5 · Accepted Answer · answered Jul 14 '09 at 11:41

5

Recommended reading: OpenVPN Howtos

answered Jul 14 '09 at 11:41

dadver

183
1
12

Definitely. The OpenVPN Howtos should get you started. If you still have questions, then post back on serverfault. – Weegee Jul 14 '09 at 13:17
4

OpenVPN isn't going to do iPhone. IPSEC, L2TP, PPTP. – phresus Jul 14 '09 at 14:40
Indeed, iPhone only supports IPSEC, L2TP and PPTP. So OpenVPN doesn't support any of those? – ibz Jul 15 '09 at 02:49
No, OpenVPN is an SSL-based VPN. It's fantastic, but no clients for the iPhone (jailbroken or not). – phresus Jul 15 '09 at 11:12

score 2 · Answer 2 · answered Jul 14 '09 at 14:45

2

OpenVPN works fine on OSX. To work with iPhoneOS, though, you're going to need a L2TP, PPTP, or IPsec server. Free/OpenSWAN is pretty easy to set up these days if you.

Honestly, the OpenSWAN documentation is pretty good, but you can find Gentoo instructions that are reasonably applicable to Arch (the default kernel config should have the options you need, so you can skip that part) here. Relevant OpenSWAN docs are here if you want to do L2TP (which makes interop with Windows clients a lot easier).

answered Jul 14 '09 at 14:45

phresus

257
1
8

So the benefit of L2TP over others would be easy interop with Windows too? Other than that, are there other significant reasons why I would choose one over another? – ibz Jul 15 '09 at 02:51
1

Yes, the benefit of L2TP is easy interop with Windows (and PPTP is pretty much a given with it). Vista and Win7 support easy-ish IPSEC, XP... not so much. Really, though, all three of them have their own issues with NAT. I'd probably just set up OpenSWAN for authentication with all three, if it were me. – phresus Jul 15 '09 at 11:13

score 1 · Answer 3 · answered Mar 20 '11 at 19:53

1

As nice as certificates are, the easiest solution is getting a PPTP server setup: https://wiki.archlinux.org/index.php/PPTP_Server

answered Mar 20 '11 at 19:53

rb2k

153
1
7

score 0 · Answer 4 · answered Mar 13 '15 at 14:58

If you want to use OpenVPN which is one of the best in terms of encryption and speed, you can't really use the native methods of iOs (L2TP, PPTP or IPSec).

There are three major families of VPN implementations in wide usage today: SSL, IPSec, and PPTP. OpenVPN is an SSL VPN and as such is not compatible with IPSec, L2TP, or PPTP.

But there is now an iOs app that allow you to link a profile and easily connect to an OpenVPN server.

You can read the ArchWiki to install OpenVPN on your server here.

score -1 · Answer 5 · answered Feb 04 '20 at 16:26

-1

Take a look at Wireguard, they now have an iPhone app also

answered Feb 04 '20 at 16:26

davidlj95

1
1

VPN server on Arch Linux

5 Answers5