Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [vpn]

VPN is the acronym for Virtual Private Network - a network type that uses a the Internet to provide remote networks or single machines with secure access to their organization's network avoiding expensive leased lines.

A VPN is a private network that uses a public network to connect remote sites or users. VPN use virtual connections routed through the Internet from the company's private network to the remote user or secondary site.

VPNs encapsulate data transfers using secure cryptographic methods and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.

5060 questions
117
votes
11 answers

Should I use tap or tun for openvpn?

What are the differences between using dev tap and dev tun for openvpn? I know the different modes cannot inter-operate. What is the technical differences, other then just layer 2 vs 3 operation. Are there different performance characteristics, or…
Thomaschaaf
  • 3,092
  • 5
  • 30
  • 24
47
votes
9 answers

Connecting to a remote server through a VPN when the local network subnet address conflicts with a remote network

This is a Canonical Question about solving IPv4 subnet conflicts between a VPN client's local network and one across the VPN link from it. After connecting to a remote location via OpenVPN, clients try to access a server on a network that exists…
John Russell
  • 573
  • 1
  • 5
  • 5
47
votes
16 answers

64-bit Cisco VPN client (IPsec)?

Cisco VPN client (IPsec) does not support 64bit Windows. Worse, Cisco does not even plan to release a 64-bit version, instead they say that "For x64 (64-bit) Windows support, you must utilize Cisco's next-generation Cisco AnyConnect VPN…
mika
  • 1,466
  • 2
  • 12
  • 18
47
votes
6 answers

How do you avoid network conflict with VPN internal networks?

While there's a wide variety of private non-routable networks across 192.168/16 or even 10/8, sometimes in being thoughtful of potential conflict, it still occurs. For example, I set up an installation OpenVPN once with the internal VPN network on…
jtimberman
  • 7,587
  • 2
  • 34
  • 42
46
votes
3 answers

telnet counterpart for UDP

Is there anything that enables a "telnet-like" functionality for UDP? I know the difference between TCP and UDP, and why telnet itself won't work - but I'm wondering if there is something similar to the telnet client, from the end-user perspective.…
Dexter
  • 597
  • 1
  • 4
  • 5
34
votes
7 answers

Checkpoint VPN Linux Client

Is there a Linux client for Checkpoint VPN? Preferably for Ubuntu?
Rubem Azenha
  • 695
  • 3
  • 8
  • 15
30
votes
5 answers

Very low TCP OpenVPN throughput (100Mbit port, low CPU utilization)

I am experiencing extremely slow OpenVPN transfer rates between two servers. For this question, I'll call the servers Server A and Server B. Both Server A and Server B are running CentOS 6.6. Both are located in datacenters with a 100Mbit line and…
Elliot B.
  • 1,356
  • 2
  • 18
  • 28
29
votes
2 answers

Under what circumstances is TCP-over-TCP performing significantly worse than TCP alone (2014)?

Many admins keep perpetuating - on ServerFault and elsewhere - how bad of an idea TCP-over-TCP is, e.g. in VPNs. That even the slightest packet loss will make one suffer from at least severe throughput degradation if not TCP meltdown, and that…
Nils Toedtmann
  • 3,342
  • 5
  • 26
  • 36
28
votes
3 answers

OpenVPN client-to-client

When using a TUN (layer 3) OpenVPN server with client-to-client disabled, my clients can still talk to each other. The client-to-client config should prevent this according to the documentation: Uncomment out the client-to-client directive if you…
lobi
  • 1,083
  • 2
  • 15
  • 30
27
votes
4 answers

Windows Advanced Firewall: What does "Edge Traversal" mean?

this should be a really simple one: In Advanced Windows Firewall on Windows Server 2008+, Properties > Advanced, what does "Edge Traversal" mean? I Googled it, of course, and was unable to come up with a concrete answer, and I was especially…
Django Reinhardt
  • 2,286
  • 3
  • 38
  • 58
27
votes
1 answer

IPsec for Linux - strongSwan vs Openswan vs Libreswan vs other(?)

Searching for IPSec and Linux one inevitably will be confronted with different solutions (see below) which all seem quite similar. The question is: where is the difference? I found these projects. All of them are open source, all are active (have a…
masgo
  • 433
  • 1
  • 4
  • 12
25
votes
2 answers

openconnect cannot connect to Anyconnect VPN group using -g

I am using openconnect to connect to a VPN. When starting the client as sudo openconnect -v -u anaphory vpn-gw1.somewhere.net, I am able to connect after entering the GROUP and Password. # openconnect -v -u anaphory vpn-gw1.somewhere.net […] XML…
Anaphory
  • 351
  • 1
  • 3
  • 6
24
votes
3 answers

Connect to OpenVPN using Windows 10 built-in VPN

I have an OpenVPN network with a pretty much standard configuration: auth.txt file with user and password ca.crt file with the certificate my-nat.pem file with the identity for my VPC and the OpenVPN config: client dev tun proto udp remote…
villasv
  • 341
  • 1
  • 2
  • 9
24
votes
3 answers

Mysterious misdirected Chinese traffic : How can I find out what DNS server an HTTP request used?

For the past week I've been getting a huge stream of traffic from a wide range of Chinese IP addresses. This traffic appears to be from normal people and their HTTP requests indicate that they think I'm: Facebook The Pirate Bay various BitTorrent…
Chris Sattinger
  • 343
  • 2
  • 7
24
votes
6 answers

Prevent SSH connection lost after logging into VPN on server machine

I encountered an issue that I can't deal with. When I'm logged onto an VPS over SSH and try to estabilish VPN connection on that VPS, the SSH connection between VPS and my machine get lost. I assume that's because routing got changed by VPN…
mic22
  • 341
  • 1
  • 2
  • 5
1
2 3
99 100