OpenVPN: Difference between revisions

From charlesreid1

No edit summary
 
(3 intermediate revisions by one other user not shown)
Line 3: Line 3:
Virtual private networks are a way of creating "virtual networks." This allows you to use an existing network connection to establish a new network connection. Networks need not be encrypted, but a virtual private network without encryption does not give you any extra security.
Virtual private networks are a way of creating "virtual networks." This allows you to use an existing network connection to establish a new network connection. Networks need not be encrypted, but a virtual private network without encryption does not give you any extra security.


VPNs become useful when you add an encryption layer on top. This enables two nodes to establish a virtual network and communicate using an end-to-end encrypted link.  
VPNs become useful when you add an encryption layer on top. This enables two nodes to establish a virtual network and communicate using an end-to-end encrypted link. All communication between these two nodes is encrypted. If one node can reach the other, and if the client trusts the certificate provided by the server, the encrypted connection is established and the virtual network is built over that encrypted link. Now, anyone on the local network who would have been able to monitor your traffic will now only see encrypted packets passing between the client and the VPN server.


=Setup=
=Installing=


==Get Source==
[[OpenVPN/Installing]]


Get tarball of source code from here: https://openvpn.net/index.php/open-source/downloads.html
=Client-Server Networks=
 
Get the signature of the tarball
 
Verify the tarball with its signature
 
Unzip the tarball
 
==Pre-Build==
 
Get a few development libraries required to build OpenVPN:
 
<pre>
$ apt-get install libzo2-dev libpam-dev
</pre>
 
==Configure/Make/Make Install==
 
Do the Linux source code build dance:
 
<pre>
$ ./configure
$ make
$ make install
</pre>


[[OpenVPN/ClientServer]] - notes on setting up OpenVPN to operate on a client-server  VPN architecture. Covers both the clients and the server.


=Single Client: Static Key VPN Setup=
=Single Client: Static Key VPN Setup=
Line 44: Line 21:
=Forcing Traffic Thru OpenVPN on Router=
=Forcing Traffic Thru OpenVPN on Router=


Useful if you want to install a router between you and your ISP, to encrypt all of your traffic and route it through OpenVPN: https://jamielinux.com/blog/force-all-network-traffic-through-openvpn-using-iptables/
Use the <code>redirect-gateway</code> option in OpenVPN to redirect all network traffic through the OpenVPN tunnel. This sets the OpenVPN server as the "redirected" gateway.
 
Also: https://charleswilkinson.co.uk/2016/05/14/selective-routing-using-ddwrt-and-openvpn/


Nice guide from Linode too: https://www.linode.com/docs/networking/vpn/tunnel-your-internet-traffic-through-an-openvpn-server
Links:
* Install a router between you and your ISP, to encrypt all of your traffic and route it through OpenVPN: https://jamielinux.com/blog/force-all-network-traffic-through-openvpn-using-iptables/
* Selective routing using DDWRT and OpenVPN: https://charleswilkinson.co.uk/2016/05/14/selective-routing-using-ddwrt-and-openvpn/
* Linode guide to routing traffic through an OpenVPN server: https://www.linode.com/docs/networking/vpn/tunnel-your-internet-traffic-through-an-openvpn-server


=Flags=
=Flags=


{{OpenVPNFlag}}
{{OpenVPNFlag}}

Latest revision as of 20:42, 22 May 2020

How VPN Works

Virtual private networks are a way of creating "virtual networks." This allows you to use an existing network connection to establish a new network connection. Networks need not be encrypted, but a virtual private network without encryption does not give you any extra security.

VPNs become useful when you add an encryption layer on top. This enables two nodes to establish a virtual network and communicate using an end-to-end encrypted link. All communication between these two nodes is encrypted. If one node can reach the other, and if the client trusts the certificate provided by the server, the encrypted connection is established and the virtual network is built over that encrypted link. Now, anyone on the local network who would have been able to monitor your traffic will now only see encrypted packets passing between the client and the VPN server.

Installing

OpenVPN/Installing

Client-Server Networks

OpenVPN/ClientServer - notes on setting up OpenVPN to operate on a client-server VPN architecture. Covers both the clients and the server.

Single Client: Static Key VPN Setup

Detailed instructions for setting up a static key virtual private network (VPN), the simplest arrangement for a single-client VPN:

OpenVPN/Static Key

Forcing Traffic Thru OpenVPN on Router

Use the redirect-gateway option in OpenVPN to redirect all network traffic through the OpenVPN tunnel. This sets the OpenVPN server as the "redirected" gateway.

Links:

Flags


Defcon.png
OpenVPN
a tool for creating and connecting to virtual private networks.


OpenVPN  · Category:OpenVPN

Creating a Static Key VPN: OpenVPN/Static Key

Configuring Your DNS: DNS


Category:VPN  · Category:Security  · Category:Anonymous Browsing  · Category:Networking


Flags  · Template:OpenVPNFlag  · e




Retrieved from "https://charlesreid1.com/w/index.php?title=OpenVPN&oldid=27584"