I have an OpenVPN server that dynamically assigns IP addresses (dhcp-style) to its clients. The address range is specified with a --server directive in the config file. I need to exclude a small number of addresses within that range and reserve them for clients that need to fixed IP addresses. I suppose I need to modify the config file c...
An employee has left the company, so we need to revoke his OpenVPN access. Unfortunately, we don't have a good record of which certs were created or being used. He probably has multiple certificates (one for each of his systems). How do I: Find out what certs are being used Find out who is using them (so I'm not blocking legitimate u...
What are the advantages and disadvantages of using knockd vs. using dynamic DNS based authentication for ssh or VPN logins from a dynamic IP address or while travelling (i.e. some random hotel IP)? Ideally, any device with ssh/VPN client capability should be able to use whatever additional client software is necessary. (The alternative...
I am creating a WinForms application to start and stop an OpenVPN connection on Windows. I am trying to achieve the same functionality as OpenVPN GUI for Windows (http://openvpn.se/) provides but using my own .NET based UI. I am starting the connection using the following approach: Process openVpnProcess = new Process(); openVpnProcess...
We have written an application that manages OpenVPN from the tray as an add-on for a bigger software package. OpenVPN includes a file called tapinstall.exe that installs the OpenVPN adapter (or any driver for that matter). Doing some research, this file is the exact same as a command-line tool called devcon that Microsoft includes in t...
We have written an application that sits in the tray controlling OpenVPN as an extension to a bigger application. If you run openvpn.exe on command line, you can press F4 to close it. We need to do send the same keypress from C#, but you can only send string values to StandardInput. We have been forced to kill OpenVpn to close it, and...
If you try to pass the username/password to OpenVPN from a file via the --auth-user-pass switch, you get the following error: "Sorry, 'Auth' password cannot be read from a file." At least they're polite. So our workaround was to programmatically write to "standard in" when we get the Auth Username: and Auth Password: prompts (this is...
How i can connect openvpn point-to-point link with both dynamic IP? Yes, i know about dyndns, but i do not want to use it. Maybe by STUN server? ...
I have a small mystery regarding OpenVPN - I hope some guru out there can help. Here's the situation: I want to establish a VPN for use by a single client. The server runs OpenVPN 1.6; the client is Ubuntu 9.04. I am able to establish a VPN connection using either a static key or using TLS, as long as I start OpenVPN (on the client) in ...
The tail-end of an OpenVPN connection (that otherwise appears successful) says (with leading timestamps omitted): Note: Cannot open TUN/TAP dev /dev/net/tun: Permission denied (errno=13) Note: Attempting fallback to kernel 2.2 TUN/TAP interface Cannot allocate TUN/TAP dev dynamically Exiting What is the problem here? ...
Is it possible to setup a VPN using openVPN on heroku to keep a staging environment private? If so, anyone have a writeup or links? ...
Id like to be able to create client keys for an openvpn setup from within a ruby script. Im wondering how to go about this. Im assuming i coudl create my own CA and key generation code in ruby. Or i could somehow just call the easy-rsa scripts (non-ruby) from within my ruby script and somehow simulate the keyboard when easy-rsa prompts...
i need a python script to run open vpn automaticaly but i use sudo for run the open vpn sudo openvpn --cd /etc/openvpn --config openvpn.conf & thats my terminal command. i have to give the password for sudo, can i use pexpect to run that command? and i have to get the exit code because i want to know that the openvpn is run succesful...
I'm trying to control multiple instances of OpenVPN's TAP driver in windows via tapinstall. It seems that because all of the devices have the same HWID -- 'tap0901' -- I'm unable to remove any single one with tapinstall -- all of them disappear when i issue tapinstall.exe remove tap0901 Furthermore, when I do install another instance...
If anybody can help me with this, it would be greatly appreciated! ...
I have setup OpenVPN on my server, and I am able to connect to it just fine, and browse the web, etc, from the client box. If I set the following option in the client config, I can no longer browse the web via domain name: redirect-gateway def1 On the server, I have run the following command: iptables -t nat -s 10.8.0.0/24 -A POSTROU...
Is there a way to build a VPN 'provider' for Android? A way to add new VPN types to the existing VPN infrastructure? OpenVPN, for instance, though also things like pppoe might fit in this category. ...
I downloaded openvpn-2.0.9-gui-1.0.3-install.exe and began to istall. But it say that it is not tested on Windows XP. Is it safe to setup it on Windows XP? What version to use to setup on Windows XP SP2. ...
Hi, I'm working on a free and open-source project (GPLv3) that basically creates a VPN. The project is meant to be portable (in terms of platform and architecture). On Linux and Mac OSX, I use the built-in system "tap/tun" device driver to create a virtual network interface and it works well. On Windows, I use the TAP driver from Open...
I have an openvpn (version 2.1_rc15 at both ends) connection setup between two gentoo boxes using shared keys. it works fine for the most part. I use mysql, http, ftp, scp over the vpn with no problems. But when I ssh from the client to the server over the vpn, weird things happen. I can login, i can execute some commands. But if i try t...