Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [openvpn]

OpenVPN is a free and open source software VPN solution. It allows secure point-to-point or site-to-site connections with routed or bridged configurations and remote access facilities.

OpenVPN is a free and open source software application that implements VPN techniques for creating secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities. It uses SSL/TLS security for encryption and is capable of traversing network address translators and firewalls.

It's architecture is build upon 4 principles:

  • Encryption
  • Authentication
  • Networking
  • Security

More info is to be found on the Open-Source site of VPN.
A very thorough tutorial can be found on Shorewall.

3274 questions
6
votes
3 answers

OpenVPN OpenSSL entry 22: invalid expiry date

I attempted to generate some OpenVPN keys for a new employee the other day. Same procedure as normal. Nothing has changed in this area for months. During the certificate generation I get the following error: Using configuration from…
Jake Wilson
  • 8,814
  • 29
  • 97
  • 125
6
votes
5 answers

OpenVPN over TCP, terrible latency but only on Win7 x64

I know TCP encapsulated over TCP is a terrible idea in general, but I can deal with the occasional decreased performance and MTU issues, and the snowball effect TCP within TCP provides where error control kicks in on both layers. The latest OpenVPN…
mr_daemon
  • 490
  • 4
  • 11
6
votes
1 answer

HowTo access Samba Share over VPN Tunnel?

I don't know how to access a Samba share running on a Ubuntu 10.04 server through OpenVPN 2.1.0. I've installed & configured OpenVPN and everything works. The server end of the tunnel has the IP of 10.8.0.1. When I connect from XP (over our local…
Jeff
6
votes
1 answer

Route host through a docker openvpn container

I am new to networking so I am trying this for the first time. I created an openvpn docker that connects to a VPN server. Running wget -q -O - https://api.myip.com inside the docker container confirms that the docker's network is appropriately…
LeanMan
  • 181
  • 4
5
votes
2 answers

How can I ensure openVPN clients persistently take the same IP address?

How can I ensure openVPN clients persistently take the same VPN IP address? I have added client-config-dir ccd to openvpn.conf and created files in /etc/openvpn/ccd/ with the names of the clients eg. "/etc/openvpn/ccd/CLIENTNAME" simply contains…
ezekiel
  • 265
  • 1
  • 3
  • 7
5
votes
3 answers

How to route only specific subnet to OpenVPN Server

I want to route only traffic for 192.168.255.0/24 through my remote openvpn server. This answer suggests adding the following to the client .ovpn route-nopull route 192.168.255.0 255.255.255.0 However, this doesn't work as when I connect and then…
ezekiel
  • 265
  • 1
  • 3
  • 7
5
votes
2 answers

openVPN Could not determine IPv4/IPv6 protocol. Using AF_INET

I am having issues connecting to my VPN, with port forwarding set correctly as I can VPN into my other lubuntu machine, also UFW is disabled. Can someone please guide my as to what I am missing in my config?? Also additionally when i turn on my UFW…
DaVinci007
  • 51
  • 1
  • 1
  • 3
5
votes
1 answer

Easy-RSA/ missing expected CA file

I can't connect to my Easy-RSA VPN server. I can connect using SSH; in the logfiles I read "error=CRL has expired". So, according to instructions found using Google I should run ./easyrsa gen-crl Which gives the error: Easy-RSA error: Missing…
Lennart
  • 185
  • 2
  • 4
5
votes
3 answers

OpenVPN: TLS Error: TLS key negotiation failed to occur within 60 seconds

The http://openvpn.net/index.php/open-source/documentation/howto.html page tells that the error is beacuse: "This error indicates that the client was unable to establish a network connection with the server. " But i think that is not the case here.…
eavar
5
votes
1 answer

Setting up an automatic DNS server on OpenVPN server

I have a number of networks in remote locations, which I want to be able to access over a VPN. The topology of each network is simply a NAT router, and a machine running an SSH server. The router has the SSH port forwarded, so all that's needed is…
emorris
  • 211
  • 2
  • 8
5
votes
2 answers

Disable global routing with OpenVPN

I managed to install the openvpn using the script [1] and able to connect on Mac OSX. However, the default option is all traffic now routes thru the VPN IP. Is it possible to route traffic using this VPN only when the destination IP is X.X.Y.Z? For…
Ryan
  • 5,831
  • 24
  • 72
  • 91
5
votes
2 answers

Why do we need a LAN physical interface bridged with OpenVPN TAP interface to get functional OpenVPN in bridge mode?

Here I have some (slightly maybe different) questions, but related to each other, therefore I prefered to ask them in one question. I have been trying to allow my OpenVPN clients (OpenVPN is setup in bridge mode) to connect to Docker containers. As…
Mohammed Noureldin
  • 541
  • 1
  • 11
  • 25
5
votes
2 answers

OpenVPN Server - CPU is pegged out

I am configuring OpenVPN to act as a SSL tunnel for a remote location. I have OpenVPN1 at our current location acting as a server then OpenVPN2 at the other location that is acting as a client but is also acting as a DHCP server to machines behind…
user22492
5
votes
2 answers

How to configure OpenVPN with Multiple VPCs in different region?

I have different VPCs in different regions in AWS: 10.1.0.0/16(A) 10.2.0.0/16(B) 10.3.0.0/16(C) I followed this article(http://cloudacademy.com/blog/openvpn-aws-vpc/) to open a vpn connection in order to let server instances in B to communicate…
Inacio
  • 53
  • 1
  • 5
5
votes
0 answers

OpenVPN slow upload, but perfectly normal download

I am driving crazy with this issue. I have a temporal SOHO server sitting behind a NAT (cannot touch this), and I need it to have a public facing IP. So a set up an OpenVPN server on a VPS (With 2 public IP), and configured OpenVPN to bridge L2 and…
Dark_eye
  • 151
  • 6
1 2 3
99 100