PacktLib: OpenVPN: Building and Integrating Virtual Private Networks

OpenVPN

Credits

About the Author

About the Reviewers

Preface

VPN—Virtual Private Network

Branches Connected by Dedicated Lines

How Does a VPN Work?

VPN Concepts—Overview

Summary

VPN Security

VPN Security

Privacy—Encrypting the Traffic

SSL/TLS Security

Summary

OpenVPN

Advantages of OpenVPN

History of OpenVPN

Networking with OpenVPN

OpenVPN Compared to IPsec VPN

Sources for Help and Documentation

The Project Community

Summary

Installing OpenVPN

Prerequisites

Obtaining the Software

Installing OpenVPN on Windows

Installing OpenVPN on Mac OS X (Tunnelblick)

Installing OpenVPN on SuSE Linux

Installing OpenVPN on Redhat Fedora Using yum

Installing OpenVPN on RPM-Based Systems

Installing OpenVPN on Debian

Installing OpenVPN on FreeBSD

Troubleshooting—Advanced Installation Methods

Internet Links, Installation Guidelines, and Help

Summary

Configuring an OpenVPN Server—The First Tunnel

OpenVPN on Microsoft Windows

Connecting Windows and Linux

Troubleshooting Firewall Issues

Summary

Setting Up OpenVPN with X509 Certificates

Creating Certificates

Certificate Generation on Windows XP with easy-rsa

Distributing the Files to the VPN Partners

Configuring OpenVPN to Use Certificates

Using easy-rsa on Linux

Troubleshooting

Summary

The Command openvpn and its Configuration File

Syntax of openvpn

Using OpenVPN at the Command Line

Configuring OpenVPN with Certificates—Simple TLS Mode

Overview of OpenVPN Parameters

Important Windows-Specific Options

Summary

Securing OpenVPN Tunnels and Servers

Securing and Stabilizing OpenVPN

Linux and Firewalls

Configuring the Windows Firewall for OpenVPN

Summary

Advanced Certificate Management

Certificate Management and Security

Installing xca

Using xca

Using TinyCA2 to Manage Certificates

Summary

Advanced OpenVPN Configuration

Tunneling a Proxy Server and Protecting the Proxy

Scripting OpenVPN—An Overview

Using Authentication Methods

Using a Client Configuration Directory with Per-Client Configurations

Individual Firewall Rules for Connecting Clients

Distributed Compilation through VPN Tunnels with distcc

Ethernet Bridging with OpenVPN

Automatic Installation for Windows Clients

Summary

Troubleshooting and Monitoring

Testing the Network Connectivity

Checking Interfaces, Routing, and Connectivity on the VPN Servers

Debugging with tcpdump and IPTraf

Using OpenVPN Protocol and Status Files for Debugging

Scanning Servers with Nmap

Monitoring Tools

Hints to Other Tools

Summary

Internet Resources

Internet Resources

Internet Resources

Internet Resources

Internet Resources

Internet Resources

Internet Resources

Internet Resources