Book description
Tag line
About This Book
- Discover over 90 practical and exciting recipes that leverage the power of OpenVPN 2.4 to help you obtain a reliable and secure VPN
- Master the skills of configuring, managing, and securing your VPN using the latest OpenVPN
- Gain expertise in establishing IPv6 connections and understand PolarSSL using the latest version of OpenVPN
- This book contains enticing recipes about OpenVPN functionalities that cater to mission critical applications
Who This Book Is For
This book is for system administrators who have a basic knowledge of OpenVPN and are eagerly waiting to build, secure, and manage VPNs using the latest version. This book assumes some prior knowledge of TCP/IP networking and OpenVPN and you must have network administration skills to get the most out of this book.
What You Will Learn
- Determine the best type of OpenVPN setup for your networking needs
- Get to grips with the encryption, authentication, and certifications features of OpenSSL.
- Integrate an OpenVPN server into the local IT infrastructure with the scripting features of OpenVPN
- Ease the integration of Windows clients into the VPN using Windows-specific client-side configuration
- Understand the authentication plugins for PAM and LDAP
- Get to know the difference between TUN-style and TAP-style networks and when to use what
- Troubleshoot your VPN setup
- Establish a connection via IPv6 along with demonstrations
In Detail
OpenVPN provides an extensible VPN framework that has been designed to ease site-specific customization, such as providing the capability to distribute a customized installation package to clients, and supporting alternative authentication methods via OpenVPN's plugin module interface.
This book provides you with many different recipes to help you set up, monitor, and troubleshoot an OpenVPN network. You will learn to configure a scalable, load-balanced VPN server farm that can handle thousands of dynamic connections from incoming VPN clients. You will also get to grips with the encryption, authentication, security, extensibility, and certifications features of OpenSSL.
You will also get an understanding of IPv6 support and will get a demonstration of how to establish a connection via IPv64. This book will explore all the advanced features of OpenVPN and even some undocumented options, covering all the common network setups such as point-to-point networks and multi-client TUN-style and TAP-style networks. Finally, you will learn to manage, secure, and troubleshoot your virtual private networks using OpenVPN 2.4.
Style and approach
This practical, recipe-based book covers the core functionalities of OpenVPN ending with troubleshooting, performance tuning and making the readers inquisitive about the advanced features.
Table of contents
-
OpenVPN Cookbook - Second Edition
- OpenVPN Cookbook - Second Edition
- Credits
- About the Author
- About the Reviewer
- www.PacktPub.com
- Customer Feedback
- Preface
- 1. Point-to-Point Networks
-
2. Client-server IP-only Networks
- Introduction
- Setting up the public and private keys
- A simple configuration
- Server-side routing
- Adding IPv6 support
- Using client-config-dir files
- Routing - subnets on both sides
- Redirecting the default gateway
- Redirecting the IPv6 default gateway
- Using an ifconfig-pool block
- Using the status file
- The management interface
- Proxy ARP
- 3. Client-server Ethernet-style Networks
-
4. PKI, Certificates, and OpenSSL
- Introduction
- Certificate generation
- OpenSSL tricks - x509, pkcs12, verify output
- Revoking certificates
- The use of CRLs
- Checking expired/revoked certificates
- Intermediary CAs
- Multiple CAs - stacking, using the capath directive
- Determining the crypto library to be used
- Crypto features of OpenSSL and PolarSSL
- Pushing ciphers
- Elliptic curve support
- 5. Scripting and Plugins
-
6. Troubleshooting OpenVPN - Configurations
- Introduction
- Cipher mismatches
- TUN versus TAP mismatches
- Compression mismatches
- Key mismatches
- Troubleshooting MTU and tun-mtu issues
- Troubleshooting network connectivity
- Troubleshooting client-config-dir issues
- Troubleshooting multiple remote issues
- Troubleshooting bridging issues
- How to read the OpenVPN log files
-
7. Troubleshooting OpenVPN - Routing
- Introduction
- The missing return route
- Missing return routes when iroute is used
- All clients function except the OpenVPN endpoints
- Source routing
- Routing and permissions on Windows
- Unable to change Windows network location
- Troubleshooting client-to-client traffic routing
- Understanding the MULTI: bad source warnings
- Failure when redirecting the default gateway
- 8. Performance Tuning
-
9. OS Integration
- Introduction
- Linux - using NetworkManager
- Linux - using pull-resolv-conf
- Windows - elevated privileges
- Windows - using the CryptoAPI store
- Windows - updating the DNS cache
- Windows - running OpenVPN as a service
- Windows - public versus private network adapters
- Windows - routing methods
- Windows 8+ - ensuring DNS lookups are secure
- Android - using the OpenVPN for Android clients
- Push-peer-info - pushing options to Android clients
-
10. Advanced Configuration
- Introduction
- Including configuration files in config files
- Multiple remotes and remote-random
- Inline certificates
- Connection blocks
- Details of ifconfig-pool-persist
- Connecting using a SOCKS proxy
- Connecting via an HTTP proxy
- Connecting via an HTTP proxy with authentication
- IP-less setups - ifconfig-noexec
- Port sharing with an HTTPS server
- Routing features - redirect-private, allow-pull-fqdn
- Filtering out pushed options
- Handing out the public IPs
Product information
- Title: OpenVPN Cookbook - Second Edition
- Author(s):
- Release date: February 2017
- Publisher(s): Packt Publishing
- ISBN: 9781786463128
You might also like
book
Troubleshooting OpenVPN
Get the solutions you need to troubleshoot any issue you may face to keep your OpenVPN …
book
CentOS Quick Start Guide
A concise walk-through of CentOS 7, starting from installation to securing it's environment. Key Features No …
book
Linux Administration Cookbook
Over 100 recipes to get up and running with the modern Linux administration ecosystem Key Features …
book
Practical Linux Security Cookbook - Second Edition
Enhance file system security and learn about network attack, security tools and different versions of Linux …