Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [openvpn]

OpenVPN is a free and open source software VPN solution. It allows secure point-to-point or site-to-site connections with routed or bridged configurations and remote access facilities.

OpenVPN is a free and open source software application that implements VPN techniques for creating secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities. It uses SSL/TLS security for encryption and is capable of traversing network address translators and firewalls.

It's architecture is build upon 4 principles:

  • Encryption
  • Authentication
  • Networking
  • Security

More info is to be found on the Open-Source site of VPN.
A very thorough tutorial can be found on Shorewall.

3274 questions
33
votes
8 answers

NetworkManager is not changing /etc/resolv.conf after openvpn dns push

I've got a problem which is "NetworkManager is not updating /etc/resolv.conf after openvpn connection with dns push configured". Here's my openvpn server config: (I've changed domain name to ABC.COM for security reason…
jaor
  • 435
  • 1
  • 4
  • 7
31
votes
3 answers

How to connect multiple VPNs using OpenVPN on Windows 7 on the same time?

I work most of the time remotly from home. To gain access to the different servers (via SSH) I have to use OpenVPN. I would like to connect to all of them (three, sometimes four) at once, so I dont have to switch all the time. My setup is Windows 7…
crono
  • 413
  • 1
  • 4
  • 6
30
votes
12 answers

OpenVPN issue - TLS key negotiation failed to occur within 60 seconds

I'm configuring an OpenVPN (version 2.3.10) server on a Windows 2012 server but I cannot make it to work. The server is behind a router and I opened the 1194 port and created a rule to forward traffic on this port to the server. Here is the log I…
vmasanas
  • 423
  • 1
  • 4
  • 5
30
votes
5 answers

Very low TCP OpenVPN throughput (100Mbit port, low CPU utilization)

I am experiencing extremely slow OpenVPN transfer rates between two servers. For this question, I'll call the servers Server A and Server B. Both Server A and Server B are running CentOS 6.6. Both are located in datacenters with a 100Mbit line and…
Elliot B.
  • 1,356
  • 2
  • 18
  • 28
28
votes
3 answers

OpenVPN client-to-client

When using a TUN (layer 3) OpenVPN server with client-to-client disabled, my clients can still talk to each other. The client-to-client config should prevent this according to the documentation: Uncomment out the client-to-client directive if you…
lobi
  • 1,083
  • 2
  • 15
  • 30
25
votes
3 answers

SSH tunneling is faster than OpenVPN, could it be?

Logically, VPN should be faster than SSH for tunneling, because: It's running on UDP and not TCP (so no TCP over TCP) It has compression However, today I tested Redis replication over both methods. I ran the test over an Ireland AWS VM, connecting…
Nitz
  • 1,038
  • 1
  • 8
  • 18
25
votes
1 answer

easyrsa vars options for PKI generation

I am using OpenVPN and whilst I can generate certificates using easyrsa just fine I don't really understand the settings in the easyrsa vars file: export KEY_COUNTRY="" export KEY_PROVINCE="" export KEY_CITY="" export KEY_ORG export…
ilium007
  • 393
  • 1
  • 5
  • 7
25
votes
1 answer

Why OpenVPN use network 0.0.0.0 netmask 128.0.0.0 as a default route?

If you use redirect-gateway def1 option in OpenVPN config file,the server will add a default gateway on your route table, what I want to know is why OpenVPN did not use network 0.0.0.0 netmask 0.0.0.0 as a default gateway instead of netmask…
Forcyy
  • 353
  • 1
  • 3
  • 4
25
votes
5 answers

Is there a real way to connect to WatchGuard's VPN from Linux?

WatchGuard officially has clients only for Windows and Mac. But I see that it uses openvpn internally. I couldn't connect to WG from Linux. Is there someone who actually get this working? How?
Sergey Kirienko
24
votes
3 answers

Connect to OpenVPN using Windows 10 built-in VPN

I have an OpenVPN network with a pretty much standard configuration: auth.txt file with user and password ca.crt file with the certificate my-nat.pem file with the identity for my VPC and the OpenVPN config: client dev tun proto udp remote…
villasv
  • 341
  • 1
  • 2
  • 9
24
votes
6 answers

Prevent SSH connection lost after logging into VPN on server machine

I encountered an issue that I can't deal with. When I'm logged onto an VPS over SSH and try to estabilish VPN connection on that VPS, the SSH connection between VPS and my machine get lost. I assume that's because routing got changed by VPN…
mic22
  • 341
  • 1
  • 2
  • 5
24
votes
1 answer

OpenVPN not default gateway for all traffic

I'm trying to make my client forward all traffic through a VPS running OpenVPN. As you can see, it will allow pings to both domains and raw IP addresses, but it will not allow traffic like that made through curl and traceroute doesn't come up with…
DrDinosaur
  • 333
  • 2
  • 3
  • 11
24
votes
3 answers

How to force all traffic through VPN?

I have a openVPN set up on the server and I am using openVPN connect for my client. I have some internal websites that I need to access and some of them don't work. I want to make sure that when the traffic is going through the VPN and not though…
monkthemighty
  • 555
  • 2
  • 4
  • 11
23
votes
8 answers

Fix 'TLS Error: TLS handshake failed' on OpenVPN client

I am configuring OpenVPN 2.3.6-1 on my Arch Linux server in order to encrypt SMB traffic over the public Internet. When I test the setup on one of my Linux virtual machine clients, I get the error: TLS Error: TLS handshake failed. I quickly read…
Kyle
  • 393
  • 1
  • 3
  • 12
23
votes
4 answers

How do I prevent TCP connection freezes over an OpenVPN network?

New details added at the end of this question; it's possible that I'm zeroing in on the cause. I have a UDP OpenVPN-based VPN set up in tap mode (I need tap because I need the VPN to pass multicast packets, which doesn't seem to be possible with tun…
Jason R
  • 428
  • 2
  • 4
  • 11
1
2
3
99 100