Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [openvpn]

OpenVPN is a free and open source software VPN solution. It allows secure point-to-point or site-to-site connections with routed or bridged configurations and remote access facilities.

OpenVPN is a free and open source software application that implements VPN techniques for creating secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities. It uses SSL/TLS security for encryption and is capable of traversing network address translators and firewalls.

It's architecture is build upon 4 principles:

  • Encryption
  • Authentication
  • Networking
  • Security

More info is to be found on the Open-Source site of VPN.
A very thorough tutorial can be found on Shorewall.

3274 questions
6
votes
6 answers

Windows openvpn client is connected but ip not changing

I have an ubuntu machine on which I am running an openvpn server. From a windows machine on a different network when I try to connect to the ubuntu machine it says connected. I can even ping the local ip of the ubuntu machine. But I do not get a…
Sab
  • 85
  • 1
  • 2
  • 5
6
votes
4 answers

How to revoke OpenVPN client certificate in Debian

I used the easy-rsa/2.0 programs to build server and client certificates for OpenVPN. I copied the client ones to the clients along with ca.crt. All good. I now need to revoke a client certificate from a stolen laptop. In…
artfulrobot
  • 2,949
  • 13
  • 36
  • 60
6
votes
3 answers

Can I use OpenVPN with a single secret password instead of a keys set?

I am looking forward to create an as-simple-as-possible OpenVPN set-up. I would like to use a single password to secure the communication instead of a set of key files. How can I set it up this way?
Ivan
  • 3,398
  • 19
  • 50
  • 71
6
votes
2 answers

OpenVPN connection works but no gateway is assigned

i try to setup openvpn on a vps and I'm able to establish a connection to the server, but the gateway isn't assigned to the client. Here are my config files: client config: client dev tun proto udp remote foo.bar 1194 resolv-retry…
frozenbit
  • 61
  • 1
  • 1
  • 2
6
votes
1 answer

OpenVPN failing on self-signed certificate over udp, works over tcp

I have the following server.conf: # OpenVPN 2.x config proto tcp port 1194 dev tun-vpn dev-type tun server 10.8.0.0 255.255.0.0 push "route 172.16.0.0 255.255.0.0" push "dhcp-option DOMAIN mydom.com" push "dhcp-option DNS 172.16.1.1" #…
mycroes
  • 226
  • 1
  • 2
  • 6
6
votes
3 answers

Timing issues with OpenVPN and NFS mounts (Debian Squeeze)

I'm trying to mount NFS filesystems over an OpenVPN link on Debian Squeeze. The problem is that the default layout of init scripts and such tries to mount the NFS filesystems before bringing up the VPN. With the default configuration, the system…
jade
  • 890
  • 5
  • 15
6
votes
3 answers

howto only tunnel specific hosts route through openvpn client on tomato

I am relatively newbie in networking world although I did coding and know some sysadmin background for a long time. and here I'm only one step from my destination. The whole picture is : at home I use one LinkSys E3000 as the gateway(don't know yet…
kcome
  • 171
  • 1
  • 1
  • 4
6
votes
3 answers

How to open OpenVPN port (1194) on server?

I have been installed OpenVPN server on my CentOs VPS, and it started successfully And try to configure iptables for it by following command: iptables -A FORWARD -m state -–state RELATED,ESTABLISHED -j ACCEPT iptables -A FORWARD -s 10.8.0.0/24 -j…
Moein Hosseini
  • 241
  • 3
  • 6
  • 13
6
votes
1 answer

OpenVPN server running on openvz. How to write iptables rule without masquerade?

I am configuring a VPS which is running on openvz as an OpenVPN server using a tun interface. I am having some trouble with the iptables rule as MASQUERADE is not available. If MASQUERADE were available, I would write the iptables rules as…
Rich
  • 945
  • 1
  • 6
  • 15
6
votes
2 answers

OpenVpn bridge interface does not respond to incoming packets from outer network !

We are trying to set up a roadwarrior vpn setup with openvpn. We want the people to be able to connect to our network via openvpn. And we want them to be able to see and connect to the machines in our network. So the solution is bridged vpn as we…
Göktürk
  • 61
  • 1
  • 3
6
votes
8 answers

opvnvpn: addressing nodes in LAN-behinds

I've setup an openvpn server which i can access remotely, once it is connected, it creates a tun0 device on both server and client with virtual ip 10.15.119.x. the openvpn server is itself 10.15.119.1. Question: how do i address other nodes in the…
lurscher
  • 172
  • 1
  • 3
  • 17
6
votes
2 answers

dynamic routing between openvpn tunnels

i'm thinking about using dynamic routing [ OSPF or RIP ] via OpenVPN tunnels. right now i have few offices connected in full mesh, but this is not scalable solution as we add more locations. i would like to avoid situation when plenty of internal…
pQd
  • 29,981
  • 6
  • 66
  • 109
6
votes
5 answers

OpenVPN: Add clients without rebuilding all keys?

I've just managed to setup OpenVPN properly on my server and test it to be properly working with client computers and I came to wonder how OpenVPN keys can be generated as clients come and go. Is it necessary to rebuild the Diffie-Hellman .dh file…
Industrial
  • 1,579
  • 6
  • 24
  • 37
6
votes
2 answers

OpenVPN with iptables and a tun interface

With an openvpn tunnel that uses a tun device, what iptables rules allow the encapsulated traffic through and what rules control the packets after encapsulation? Basically, I am wondering how the order of operations works with iptables and openvpn…
Kyle Brandt
  • 83,619
  • 74
  • 305
  • 448
6
votes
2 answers

How to create a route to a domain name using openvpn

Is there any way to configure openvpn to "push" routes to a client for a given FQDN instead of an IP/mask? I mean something that would do the same as the following (broken) line in openvpn.conf file. push "route my.hostname.mydomain.com" The host…
scetoaux
  • 1,289
  • 2
  • 12
  • 26
1 2 3
99 100