Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [openvpn]

OpenVPN is a free and open source software VPN solution. It allows secure point-to-point or site-to-site connections with routed or bridged configurations and remote access facilities.

OpenVPN is a free and open source software application that implements VPN techniques for creating secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities. It uses SSL/TLS security for encryption and is capable of traversing network address translators and firewalls.

It's architecture is build upon 4 principles:

  • Encryption
  • Authentication
  • Networking
  • Security

More info is to be found on the Open-Source site of VPN.
A very thorough tutorial can be found on Shorewall.

3286 questions
170
votes
4 answers

Getting "Cannot ioctl TUNSETIFF tun: Operation not permitted" when trying to connect to OpenVPN

I'm trying to setup an OpenVPN Access Server in AWS using the market place AMI, but I;m struggling to connect to it. The access server is up and running. I've also added a user with Auto-Login and generated the relevant client config and…
Stephen Melrose
  • 5,965
85
votes
9 answers

How to view connected users to open vpn server?

I'm developing a website for managing OpenVPN users with Django framework. But I need to know is there any way to extract active users from OpenVPN? My server is running Ubuntu 12.04.
hamidfzm
  • 1,035
47
votes
4 answers

Generate an OpenVPN profile for client user to import

Is there any documentation or resource describing how to generate and host a profile for an OpenVPN client to import? Ideally would like my users to not have to separately fetch a .zip file of the .ovpn + certs, extract it to the proper directory,…
xyzzyrz
  • 1,665
39
votes
3 answers

Why is `--duplicate-cn` not recommended in OpenVPN?

Is this for security reason, or performance reason?
Cheng
  • 751
37
votes
2 answers

Can generated OpenVPN keys be used on multiple clients?

We are experimenting with running an OpenVPN server for our business. One question I can't seem to find the answer to is this: When we generate keys for one of our users for them to use at home, can their use the same keys on their home laptop as…
Jake Wilson
  • 8,924
32
votes
12 answers

OpenVPN issue - TLS key negotiation failed to occur within 60 seconds

I'm configuring an OpenVPN (version 2.3.10) server on a Windows 2012 server but I cannot make it to work. The server is behind a router and I opened the 1194 port and created a rule to forward traffic on this port to the server. Here is the log I…
vmasanas
  • 443
  • 1
  • 4
  • 5
24
votes
8 answers

Fix 'TLS Error: TLS handshake failed' on OpenVPN client

I am configuring OpenVPN 2.3.6-1 on my Arch Linux server in order to encrypt SMB traffic over the public Internet. When I test the setup on one of my Linux virtual machine clients, I get the error: TLS Error: TLS handshake failed. I quickly read…
Kyle
  • 403
24
votes
1 answer

OpenVPN not default gateway for all traffic

I'm trying to make my client forward all traffic through a VPS running OpenVPN. As you can see, it will allow pings to both domains and raw IP addresses, but it will not allow traffic like that made through curl and traceroute doesn't come up with…
DrDinosaur
  • 333
24
votes
3 answers

How to force all traffic through VPN?

I have a openVPN set up on the server and I am using openVPN connect for my client. I have some internal websites that I need to access and some of them don't work. I want to make sure that when the traffic is going through the VPN and not though…
monkthemighty
  • 555
19
votes
2 answers

How can multiple clients of an openvpn server find each other?

I am bringing up an openvpn server that will support multiple clients into a private subnet. So on the private subnet the clients connecting will get IP addresses such as 10.8.0.10, 10.8.0.11, etc. One of the facilities I need is for the clients to…
AlanObject
  • 702
19
votes
3 answers

Unable to logon to vpn

My openvpn client log file- The interesting bit: Tue Oct 26 12:32:49 2010 TLS Error: cannot locate HMAC in incoming packet from 67.228.223.12:3389 Tue Oct 26 12:32:49 2010 Fatal TLS error (check_tls_errors_co), restarting Tue Oct 26 12:32:49 2010…
user58283
18
votes
3 answers

Getting disconnected from OpenVPN server each hour

I am having a rather strange issue with my OpenVPN configuration. I am connecting from Windows 7 with official latest OpenVPN client to my OpenVPN server (OpenVPN 2.1.4 i386-redhat-linux-gnu). The problem is I am getting disconnected from my OpenVPN…
Andrew
  • 1,114
17
votes
2 answers

OpenVPN unable to disable encryption

Both in server and client config I have set: cipher none auth none Following this advice I am also using UDP port 1195. When I launch server and client I get following warnings: Tue Dec 4 12:58:25 2018 ******* WARNING *******: '--cipher none' was…
user2449761
  • 273
16
votes
4 answers

How do I tell if all traffic is going through the VPN?

I have an OpenVPN set up on the server and I am using OpenVPN connect for my client. I have some internal websites that I need to access and some of them don't work. I want to make sure that when the traffic is going through the VPN and not though…
monkthemighty
  • 555
12
votes
2 answers

How can I fix link-mtu and tun-mtu are used inconsistently warnings in OpenVPN?

when connecting to my OpenVPN I am getting the following warnings in the client log: Sat Mar 09 06:52:57 2019 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1469', remote='link-mtu 1569' Sat Mar 09 06:52:57 2019 WARNING: 'tun-mtu' is…
Tiago Stapenhorst
  • 393
1
2 3
23 24