Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [openvpn]

OpenVPN is a free and open source software VPN solution. It allows secure point-to-point or site-to-site connections with routed or bridged configurations and remote access facilities.

OpenVPN is a free and open source software application that implements VPN techniques for creating secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities. It uses SSL/TLS security for encryption and is capable of traversing network address translators and firewalls.

It's architecture is build upon 4 principles:

  • Encryption
  • Authentication
  • Networking
  • Security

More info is to be found on the Open-Source site of VPN.
A very thorough tutorial can be found on Shorewall.

3274 questions
1
vote
1 answer

OpenVPN duplicate-cn : how to distinguish clients

I've got an OpenVPN setup, wherein the entire class of clients (embedded devices) share the same client certificate. They are however distinguishable by their hostnames (which is derived from the hardware ID anyways) - I would like to be able to…
qdot
  • 138
  • 1
  • 8
1
vote
0 answers

allow spoofing when using tun

I have a working openvpn setup with a server and a number of clients. How would i go around allowing IP spoofing through the openvpn server? (to demonstrate security concepts)? A normal ping from client to server goes through all right: root@client:…
Johnny
  • 11
  • 2
1
vote
1 answer

SNAT on windows 2008

I've an openVPN client which runs on windows2008 R2 server and through this windows 2008, I'm trying to do static nat to a machine which lies behind this win2008s real network. Here is my configuration for 2008 server; OpenVPN server; 10.9.0.1…
goktan
  • 11
  • 3
1
vote
1 answer

iptables for openvpn server not working

I have these deny statements in my iptables log: RULE 12 -- DENY IN=tun0 OUT=eth1 MAC= SRC=172.16.250.6 DST=192.168.0.11 LEN=84 TOS=0x00 PREC=0 x00 TTL=63 ID=0 DF PROTO=ICMP TYPE=8 CODE=0 ID=20001 SEQ=1 Here is my iptables FORWARD table target …
Jim
  • 988
  • 7
  • 20
  • 33
1
vote
1 answer

Juniper SRX1400 VPN

I have been trying to set up a client VPN on a Juniper SRX1400 without much success. All documentation I found from Juniper and elsewhere does a lot of other (difficult and wonderful) things other than the simple things I want to do. We already have…
ank
  • 700
  • 5
  • 13
1
vote
0 answers

OpenVPN Clients using server's connection (with no default gateway)

I wanted an OpenVPN server so that I could create a private VPN network for staff to connect to the server. However, not as planned, when clients connect to the VPN, it's using the VPN's internet connection (ex: when going to whatsmyip.com, it's…
Branden Martin
  • 121
  • 5
1
vote
2 answers

Using OpenVPN with the concentrator being on a dynamic IP

Is it possible to use both the OpenVPN and DynDNS services together? Would you advised against it for any reason (security, performance, etc.)? I am using DynDNS for my dynamic IP. Will OpenVPN work with a dynamic IP?
Stewart Robinson
  • 1,155
  • 4
  • 12
  • 24
1
vote
2 answers

Openvpn client can ping the server, but can not ping www.google.com

I set up Openvpn in a Ubuntu vps following this. This is my client route -n Destination Gateway Genmask Flags Metric Ref Use Iface 0.0.0.0 10.8.0.5 128.0.0.0 UG 0 0 0 tun0 0.0.0.0 …
zjk
  • 135
  • 1
  • 6
1
vote
1 answer

Installing OpenVPN in Amazon EC2?

I'm trying to install openvpn in my amazon ec2 instance. I tried the following site for my setup. In my client side I run the following command : sudo openvpn --proto tcp-client --remote x.x.x.x.x.x. --port 80 --dev tun1 --secret ovpn.key…
batman
  • 321
  • 1
  • 5
  • 10
1
vote
2 answers

OpenVPN: No DNS forward

I've been able to set up a routed OpenVPN on my VPS running Ubuntu 10.04. I'm able to ping both ways as well as open any website using IP-addresses on the client. Via domain names however, it does not work. Since I'm fairly new to OpenVPN and…
Index
  • 121
  • 2
  • 8
1
vote
1 answer

openvpn tunnel- tunnel is up but issues with routing

I am having trouble with a site to site tunnel. Both routers are centos based routers. Router A is the server, and router B is the client. The VPN tunnel is established. From router B, I can ping anything on the network of router A. From router A…
Lock
  • 1,637
  • 7
  • 26
  • 33
1
vote
1 answer

Difference between site-to-site and client-to-site configuration on openVPN server

I am trying to setup a site to site VPN tunnel using openVPN. The server currently is setup to accept client to site connections. When configuring a site to site tunnel (as opposed to the client to site that is currently setup), is there something…
Lock
  • 1,637
  • 7
  • 26
  • 33
1
vote
0 answers

How to forward all traffic through openvpn?

and thanks in advance. I'm having problems trying to forward all openvpn clients traffic through the vpn network. The vpn server, has 2 interfaces, one connecting to the internet (eth0), and the other one acting as a router to the rest of the local…
Simon
  • 875
  • 2
  • 12
  • 22
1
vote
0 answers

Networking between openvpn and pptp clients

Long uptime to everyone! OS FreeBSD 9.0-RELEASE, pptpd-1.3.4. Network: em0 1.2.3.4 - external interface and ip tun0 10.18.1.0/24 - network for openvpn clients tun1 10.18.2.0/24 - network for pptp clients Configuration. /etc/ppp.conf: default: set…
freeminder
  • 23
  • 1
  • 5
1
vote
0 answers

OpenVPN without Root-CA

Simple OpenVPN Setup with SSL Authentication. SSL-Setup: Root-CA > Intermediate-CA > Issuing-CA All certificates (vpn-server and -clients) are issued by the "Issuing-CA". I tried to use the certificate of the Issuing-CA as OpenVPN ca ca.pem…
Michuelnik
  • 3,410
  • 3
  • 19
  • 24
1 2 3
99
100