wiki.ipfire.org

The community-maintained documentation platform of IPFire

User Tools

Site Tools


configuration:services:openvpn

OpenVPN on IPFire

OpenVPN is a VPN service that allows remote networks or wireless clients such as laptops, to connect to IPFire. This functionality is also available with the implementation of IPsec, but OpenVPN takes a different approach, based on SSL tunnels.

Using OpenVPN instead of IPSec is a matter of preference, though there are a few very good reasons to choose one over the other.

OpenVPN

  • Easier to set up and configure
  • Less likely to be blocked by intermediate routers
  • Much better for site-to-site connections (where an entire network is connected to another network)
  • Ability to do Ethernet-layer tunneling (not possible with IPSec)
  • More stable, and troubleshooting is generally simpler.
  • Standard for OpenSource projects

IPSec

  • More widely used in industry
  • Available with proprietary routers (most proprietary routers do not support OpenVPN)
  • Arguably more secure, since OpenVPN users can (and sometimes do) set their passwords empty, allowing a connection without a passphrase.
  • Formally standardized via IETF RFC 3193
  • De Facto standard for Microsoft products.

See this article for some additional in-depth information about the two.

Overview

This documentation is divided into four areas. At first, everything worth knowing about is the configuration, for advanced users there are tips and tricks under extensions. Smartphones are often not so easy to configure, but therefor there are some help findable in this wiki.

Configuration Here are the various configurations of OpenVPN on IPFire
Extensions A collection of expandabilities from OpenVPN users
Smartphones/Tablets Configure Smartphones and Tablets for OpenVPN.
Troubleshooting What can be done if something doesn´t work
configuration/services/openvpn.txt · Last modified: 2018/08/26 19:37 by Jon