Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [openvpn]

OpenVPN is a free and open source software VPN solution. It allows secure point-to-point or site-to-site connections with routed or bridged configurations and remote access facilities.

OpenVPN is a free and open source software application that implements VPN techniques for creating secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities. It uses SSL/TLS security for encryption and is capable of traversing network address translators and firewalls.

It's architecture is build upon 4 principles:

  • Encryption
  • Authentication
  • Networking
  • Security

More info is to be found on the Open-Source site of VPN.
A very thorough tutorial can be found on Shorewall.

3274 questions
5
votes
2 answers

Why is an authentication file accepted in the config file and not on the command line?

I connect to a VPN server which requires authentication via /usr/sbin/openvpn --config /etc/openvpn/server.ovpn This prompts me for a login/password (= OK). I added the login and password to a file and updated the /etc/openvpn/server.ovpn…
WoJ
  • 3,607
  • 9
  • 49
  • 79
5
votes
1 answer

OpenVPN Bad encapsulated packet length from peer

I have an OpenVPN server running in the cloud set to listen on 1194/tcp with a UFW addition that forwards 443 to 1194 (So I can use my VPN in places with restrictive firewalls.) When I try and open a https connect to google.com I get the below on my…
FortuneCookie101
  • 151
  • 1
  • 1
  • 3
5
votes
1 answer

Access to service in Docker container connected to VPN

I set up a Linux server (VirtualBox VM for now) In that server I run a Docker container containing two things: An app with web interface on certain port Open VPN Client I can access that app (from my host machine, since Linux is VM guest) and…
SmxCde
  • 151
  • 3
5
votes
1 answer

OpenVPN needs a gateway parameter fo a --route option

I've got an OpenVPN client that isn't connecting to the vpn server. I've pasted the full log below, but in particular, I'm getting these issues with the route: OpenVPN ROUTE: OpenVPN needs a gateway parameter for a --route option and no default was…
jmilloy
  • 223
  • 1
  • 4
  • 12
5
votes
1 answer

openVPN - Split-tunneling DNS priority

I have commented out the (push "redirect-gateway def1") to turn our openVPN appliance into a split-tunneling mode. #push "redirect-gateway def1" push "route 172.21.1.0 255.255.248.0" push "route 10.61.255.0 255.255.240.0" However, seems I'm not…
user192756
5
votes
4 answers

openvpn: How to not use VPN for domains with multiple IP addresses

I want to route around openvpn for a specific domain. I have tried: allow-pull-fqdn route specificdomain.com 255.255.255.255 net_gateway But this simply does a DNS lookup of the domain and adds whatever IP it gets to the routing table to use a…
David Ljung Madison Stellar
  • 151
  • 1
  • 1
  • 7
5
votes
1 answer

Is it possible to WOL via OpenVPN?

I am trying to find a way to turn on my work PCs remotely via OpenVPN. The PCs are connected to a router which is on the subnet of another router owned by the people who manage our building. When the PCs are powered on, I can access them fine using…
Richard Lapthorn
  • 81
  • 1
  • 2
  • 6
5
votes
1 answer

Automatically Call a Script when a New User Connects and Bandwidth Shape the Connection

I hope this is easy The following script called up.sh works perfect when I run it from the command line as root. However, instead of manually calling this script each time a new user connects to OpenVPN to individually limit the bandwidth, delay,…
Server Programmer
  • 237
  • 2
  • 4
  • 11
5
votes
1 answer

Connect to openvpn management interface on unix domain socket

This should be super easy, I think I'm missing something obvious. The OpenVPN docs state that you can run the management interface on a Unix domain socket. OK, no problem, I tried that. openvpn --dev tun --management /dev/openvpn unix This seems to…
JDS
  • 2,598
  • 4
  • 30
  • 49
5
votes
2 answers

Openvpn linux connection reset, restarting [0]

This works perfectly fine under windows but fails on my ubuntu laptop Does anyone have any insight as to why this is? openvpn output Thu Dec 31 13:49:42 2015 OpenVPN 2.3.2 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [eurephia] [MH]…
tom
  • 61
  • 1
  • 4
5
votes
2 answers

Why does data sit in Send-Q? TCP sessions freezing

Issue I run an IRC server for 20-50 users. We sometimes have issues with messages not arriving in a timely fashion or at all. After some packet captures we determined that messages sit in the server's "Send-Q". When a message doesn't arrive I'll…
Cory J
  • 1,568
  • 5
  • 19
  • 28
5
votes
1 answer

openvpn, option tls-cipher not working, no shared cipher

while experimenting with setting up openvpn, i stumbled upon this tip on a website. it says that you can limit the list of ciphers, to prevent downgrade attacks. i testet it in a lan with 2 computers, both running a kubuntu 14.04 with OpenVPN 2.3.2.…
coffeekid
  • 124
  • 2
  • 8
5
votes
1 answer

Assign static IP by MAC address on openVPN

Our business is currently running a VPN using OpenVPN on a server we host ourselves. We have a need to lock down our internal network for client reasons - so the desired outcome is that only whitelisted hardware/MAC addresses can connect to our…
shaneoh
  • 414
  • 3
  • 7
  • 19
5
votes
1 answer

How to identify and list openvpn connected clients

I need to know, how can I identify an OpenVPN clients, connecting to an OpenVPN gateway with a username, for example? Where would I put it in the connection profile file? Or generate a personal certificate with a name for it? Another question - when…
Maxim V. Pavlov
  • 663
  • 3
  • 11
  • 29
5
votes
0 answers

Access website hosted on same server as VPN via the VPN

I have just finished setting up a OpenVPN server running on Ubuntu 12.04 and I have been able to connect to it from my own computer (the client). I am able to set up the VPN server to route ALL traffic via the VPN with the push "redirect-gateway…
Titi
  • 230
  • 2
  • 6
1 2 3
99 100