Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [openvpn]

OpenVPN is a free and open source software VPN solution. It allows secure point-to-point or site-to-site connections with routed or bridged configurations and remote access facilities.

OpenVPN is a free and open source software application that implements VPN techniques for creating secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities. It uses SSL/TLS security for encryption and is capable of traversing network address translators and firewalls.

It's architecture is build upon 4 principles:

  • Encryption
  • Authentication
  • Networking
  • Security

More info is to be found on the Open-Source site of VPN.
A very thorough tutorial can be found on Shorewall.

3274 questions
8
votes
2 answers

User's private key is used for auth only?

I have a simple question regarding OpenVPN protocol. Let's suppose we have two different users, with different keys for the same server, and both keys 1024bits. If this two users make the exactly same request, and someone is sniffing the data on…
user2864778
  • 239
  • 4
  • 9
8
votes
2 answers

Openvpn routing for lan to lan through tun

I am trying to setup an OpenVPN tun to connect two lan's The open vpn connection is up and working but there is a problem with my routing or nat or something. What I need is an example of what a working, routed openvpn setup should look like on the…
Alex
  • 81
  • 1
  • 1
  • 3
8
votes
3 answers

How do I assign specific IP address to my OpenVPN server?

I'm trying to setup an OpenVPN server which would dynamically assign clients their IP addresses from given range and I need the server to have a specific static IP address which does not lie at the start of the address range (e.g. 192.168.0.200…
mike
  • 83
  • 1
  • 1
  • 4
8
votes
1 answer

Software VPN connection to Amazon AWS VPC private instance

I have a Virtual Private Cloud (VPC) instance on Amazon AWS. Inside the VPC, I have a private instance which is running the database and a public instance which has the front-end web pages for accessing the database. There is no way to login into…
tilmik
  • 135
  • 1
  • 8
8
votes
3 answers

Openvpn server not forwarding ping traffic from tun0 to eth0 for rest of the hosts in the subnet

Currently I have a openvpn server and client setup with rounting (not bridging) When I try to ping from my client to server ip address it works fine. But when I try to ping rest of the subnet hosts behind openvpn server, it does not work. Can…
parth
  • 393
  • 1
  • 2
  • 7
8
votes
5 answers

Check openVPN client connected Debian

How can I check if my Debian OpenVPN client is connected? Is there a specific command I have to run? Or can I read it from the logfile? Thanks. Edit: The answers below provide great value in debugging. I used the same open vpn credentials on two…
Hendrik
  • 251
  • 2
  • 4
  • 11
8
votes
2 answers

Tunneling a public IP to a remote machine

I have a Linux server A with a block of 5 public IP addresses, 8.8.8.122/29. Currently, 8.8.8.122 is assigned to eth0, and 8.8.8.123 is assigned to eth0:1. I have another Linux machine B in a remote location, behind NAT. I would like to set up an…
Jim Paris
  • 276
  • 2
  • 3
  • 8
8
votes
1 answer

Can OpenSWAN replace OpenVPN?

Background I have a working OpenVPN setup right now, where users can connect the the private network at home with their computers. However most phones only support IPSec, so I would like to offer the same service for phones with IPSec as I do for…
Sandra
  • 10,303
  • 38
  • 112
  • 165
8
votes
3 answers

How to prevent users from sharing certificates in OpenVPN?

I have an OpenVPN server which uses certificates and LDAP authentication. The problem is that, one user could share his certificate and other valid LDAP users could use this certificate. Question How do I make sure that Bob's certificate can only be…
Sandra
  • 10,303
  • 38
  • 112
  • 165
8
votes
2 answers

Openvpn for client/server in same subnet

I'm trying to openvpn into an office network (192.168.1.0/24) from a client sitting on a network with the same subnet (also 192.168.1.0/24). It is a linux (ubuntu 9.10) server and windows client. I followed this ubuntu openvpn community…
fostandy
  • 223
  • 1
  • 2
  • 7
7
votes
1 answer

Stop SoftEther from routing all traffic through the VPN

I have successfully set-up SoftEther on my AWS free tier machine, and put a small apache2 instance on there. I can access the webpage via VPN from windows, Mac & Linux. BUT - when the VPN client is activated, ALL the traffic goes through the VPN.…
Andyj12
  • 149
  • 1
  • 5
7
votes
1 answer

Cannot ioctl TUNSETIFF tap0: Device or resource busy (errno=16)

I'm having this weird issue that when I run bridge-start together with openvpn, the service won't start. If I don't let openvpn run bridge-start, and add the necessary interfaces (tap0, br0) manually (or run bridge-start from the shell) and I…
Lethargos
  • 455
  • 2
  • 7
  • 19
7
votes
1 answer

OpenVPN HA Setup on AWS

We are using Paid version of OpenVPN on AWS. Now we want to setup HA but we could not find any proper solution for OpenVPN HA on AWS. Tried OpenVPN document but it doesn't meet the requirement of HA on AWS. Can anyone share/suggest best solution…
sanjayparmar
  • 633
  • 8
  • 19
7
votes
2 answers

AWS: Subnets vs Security groups for setting up a VPC

I'm new to AWS, and I have an instance on EC2 that I would like to restrict to just the IPs in my home network. What is the difference between the subnets and security groups that are associated with a VPC? From my understanding, it is the security…
sams
  • 101
  • 2
  • 5
7
votes
3 answers

Name of the tun interface when running openvpn?

I have two OpenVPN client setups, controlled by systemd services openvpn.foo and openvpn.bar. They connect to different VPNs and may or may not be active at any point in time. I'd like to set up different iptables firewall rules for them. The…
Johannes Ernst
  • 1,097
  • 5
  • 17
  • 27
1 2 3
99 100