OpenVPN 2 Cookbook : 100 simple and incredibly effective recipes for harnessing the power of the OpenVPN 2 network / Jan Just Keilser.

Format:

Book

Author/Creator:

Keilser, Jan Just.

Language:

English

Subjects (All):

Extranets (Computer networks).

Operating systems (Computers).

Physical Description:

1 online resource (356 pages)

Edition:

1st ed.

Place of Publication:

Birmingham : Packt Publishing, c2011.

Language Note:

English

Summary:

100 simple and incredibly effective recipes for harnessing the power of the OpenVPN 2 network

Contents:

Cover; Copyright; Credits; About the Author; About the Reviewers; www.PacktPub.com; Table of Contents; Preface; Chapter 1: Point-to-Point Networks; Introduction; Shortest setup possible; OpenVPN secret keys; Multiple secret keys; Plaintext tunnel; Routing; Configuration files versus the command-line; Complete site-to-site setup; 3-way routing; Chapter 2: Client-server IP-only Networks; Introduction; Setting up the public and private keys; Simple configuration; Server-side routing; Using client-config-dir files; Routing: subnets on both sides; Redirecting the default gateway

Using an 'ifconfig-pool' blockUsing the status file; Management interface; Proxy-arp; Chapter 3: Client-server Ethernet-style Networks; Introduction; Simple configuration-non-bridged; Enabling client-to-client traffic; Bridging-Linux; Bridging-Windows; Checking broadcast and non-IP traffic; External DHCP server; Using the status file; Management interface; Chapter 4: PKI, Certificates, and OpenSSL; Introduction; Certificate generation; xCA: a GUI for managing a PKI (Part 1); xCA: a GUI for managing a PKI (Part 2); OpenSSL tricks: x509, pkcs12, verify output; Revoking certificates

The use of CRLsChecking expired/revoked certificates; Intermediary CAs; Multiple CAs: stacking, using

capath; Chapter 5: Two-factor Authentication with PKCS#11; Introduction; Initializing a hardware token; Getting a hardware token ID; Using a hardware token; Using the management interface to list PKCS#11 certificates; Selecting a PKCS#11 certificate using the management interface; Generating a key on the hardware token; Private method for getting a PKCS#11 certificate; Pin caching example; Chapter 6: Scripting and Plugins; Introduction; Using a client-side up/down script

Windows login greeterUsing client-connect/client-disconnect scripts; Using a 'learn-address' script; Using a 'tls-verify' script; Using an 'auth-user-pass-verify' script; Script order; Script security and logging; Using the 'down-root' plugin; Using the PAM authentication plugin; Chapter 7: Troubleshooting OpenVPN: Configurations; Introduction; Cipher mismatches; TUN versus TAP mismatches; Compression mismatches; Key mismatches; Troubleshooting MTU and tun-mtu issues; Troubleshooting network connectivity; Troubleshooting client-config-dir issues; How to read the OpenVPN log files

Chapter 8: Troubleshooting OpenVPN: RoutingIntroduction; The missing return route; Missing return routes when 'iroute' is used; All clients function except the OpenVPN endpoints; Source routing; Routing and permissions on Windows; Troubleshooting client-to-client traffic routing; Understanding the 'MULTI: bad source' warnings; Failure when redirecting the default gateway; Chapter 9: Performance Tuning; Introduction; Optimizing performance using 'ping'; Optimizing performance using iperf; OpenSSL cipher speed; Compression tests; Traffic shaping; Tuning UDP-based connections

Tuning TCP-based connections

Notes:

Includes index.

ISBN:

9786613012920

9781283012928

1283012928

9781849510110

1849510113

OCLC:

797916609