What is the difference between bridging and routing?
Bridging and routing are two methods of linking systems via a VPN. Bridging advantages Broadcasts traverse the VPN -- this allows software that depends on LAN broadcasts such as Windows NetBIOS file...
View ArticleWhat is Bridging?
Bridging is a technique for creating a virtual, wide-area ethernet LAN, running on a single subnet. For practical information on bridging, see the Ethernet Bridging Mini-HOWTO. See our article on...
View ArticleWhat is the difference between a TUN device and a TAP device?
A TAP device is a virtual ethernet adapter, while a TUN device is a virtual point-to-point IP link. You cannot mix --dev tun and --dev tap on different ends of the connection. Use one or the other...
View ArticleHow stable is the OpenVPN Protocol, i.e. can old versions of OpenVPN talk to...
While the OpenVPN protocol has been fairly stable since version 1.1.0, minor changes have occurred. See the Compatibility Notes for more information.
View ArticleDoes OpenVPN support Certificate Revocation Lists (CRLs)?
Yes. See the --crl-verify option in OpenVPN 1.5 and higher.
View ArticleIs it important to OpenVPN security practices to build an intermediate...
Unless you know that you need it, you generally don't -- just be very careful about keeping your CA safe. Having an intermediate CA allows you to keep your "real" CA locked up with no network...
View ArticleAre there any known security vulnerabilities with OpenVPN?
Not to our knowledge (as of 2004.12.08). The current OpenVPN security model matured by version 1.1.0, which was released in 4/2002. Since that time, there have been no confirmed reports on the OpenVPN...
View ArticleWhat is the principle behind OpenVPN tunnels?
Okay, here is a brief summary of the principle behind OpenVPN: Imagine you had a direct physical wire (i.e. a long cable) connecting two computers (A and B) at different locations. On each computer...
View ArticleOn Slackware, I get the error: Cipher algorithm 'BF-CBC' not found (OpenSSL)
By default, OpenVPN uses the blowfish cipher for tunnel encryption. For some reason, some versions of Slackware have an OpenSSL library built without Blowfish cipher support. The fix is either: Rebuild...
View ArticleHow can I build a binary RPM package for my specific Linux platform?
Building an OpenVPN binary RPM package requires these RPM prerequisites: openssl openssl-devel lzo lzo-devel The openssl package is almost always installed by default on Linux distributions. The...
View ArticleWhat is the difference between bridging and routing?
Bridging and routing are two methods of linking systems via a VPN. Bridging advantages Broadcasts traverse the VPN -- this allows software that depends on LAN broadcasts such as Windows NetBIOS file...
View ArticleWhat is Bridging?
Bridging is a technique for creating a virtual, wide-area ethernet LAN, running on a single subnet. For practical information on bridging, see the Ethernet Bridging Mini-HOWTO. See our article on...
View ArticleWhat is the difference between a TUN device and a TAP device?
A TAP device is a virtual ethernet adapter, while a TUN device is a virtual point-to-point IP link. You cannot mix --dev tun and --dev tap on different ends of the connection. Use one or the other...
View ArticleHow stable is the OpenVPN Protocol, i.e. can old versions of OpenVPN talk to...
While the OpenVPN protocol has been fairly stable since version 1.1.0, minor changes have occurred. See the Compatibility Notes for more information.
View ArticleDoes OpenVPN support Certificate Revocation Lists (CRLs)?
Yes. See the --crl-verify option in OpenVPN 1.5 and higher.
View ArticleIs it important to OpenVPN security practices to build an intermediate...
Unless you know that you need it, you generally don't -- just be very careful about keeping your CA safe. Having an intermediate CA allows you to keep your "real" CA locked up with no network...
View ArticleAre there any known security vulnerabilities with OpenVPN?
Not to our knowledge (as of 2004.12.08). The current OpenVPN security model matured by version 1.1.0, which was released in 4/2002. Since that time, there have been no confirmed reports on the OpenVPN...
View ArticleWhat is the principle behind OpenVPN tunnels?
Okay, here is a brief summary of the principle behind OpenVPN: Imagine you had a direct physical wire (i.e. a long cable) connecting two computers (A and B) at different locations. On each computer...
View ArticleOn Slackware, I get the error: Cipher algorithm 'BF-CBC' not found (OpenSSL)
By default, OpenVPN uses the blowfish cipher for tunnel encryption. For some reason, some versions of Slackware have an OpenSSL library built without Blowfish cipher support. The fix is either: Rebuild...
View ArticleHow can I build a binary RPM package for my specific Linux platform?
Building an OpenVPN binary RPM package requires these RPM prerequisites: openssl openssl-devel lzo lzo-devel The openssl package is almost always installed by default on Linux distributions. The...
View Article
