OpenVPN Increase the script for logging user log
Cat connect.sh
#!/bin/bash
time= ' Date +%f '
if [-f/etc/openvpn/log/openvpn_$time.log];then touch
/ Etc/openvpn/log/openvpn_$time.log
echo "' Date ' +%f%h:%m:%s ' User $common _name trust_ip $trusted _ip is login, REMOTE_IP is $ifconfig _pool_remote_ip, Mask is $route _netmask_1 ">>/etc/
By simply using the openvpn proxy, all traffic on the local machine will go through the Remote VPN Server. However, when we roll over the wall, it is generally the traffic webpage, that is, as long as the http traffic goes through the VPN. Openvpn combined with squid's http forward proxy can provide the wall-over function for Web browsing, while other traffic such as QQ and thunder still follows the normal
Use OPENVPN to implement Intranet mutual access between two locations (1) master server configurationMaster Server Configuration
Functions to be implemented:
Shenzhen:Master VPN Server: dns.dog.comInternet ip-eth1: 192.168.68.71Intranet ip-eth0: 10.1.1.254Guangzhou:VPN Server: lvs1.dog.comInternet ip-eth1: 192.168.68.73Intranet ip-eth0: 10.1.2.1Clients outside China:192.168.68.79Shenzhen-Guangzhou tunnel uses virtual IP addresses 10.8.0.1 and 10.8.0.
VPN protocols: PPTP, L2TP, and OpenVPN1. Concepts of PPTP, L2TP, and OpenVPN Tunneling Protocols 1. Default port number of PPTP (Point to Point Tunneling Protocol): 1723 PPTP, or PPTF Protocol. This protocol is a new enhanced security protocol developed on the basis of the PPP protocol. It supports multi-protocol Virtual Private Network (VPN) and can pass the password authentication protocol (PAP) and Extended Authentication Protocol (EAP) to enhance
First, the working principle of OpenVPN
VPN technology establishes a private tunnel on the public network through key exchange, encapsulation, authentication and encryption, which guarantees the integrity, privacy and effectiveness of the transmitted data. OpenVPN is a new open source project emerging in recent years, which realizes a sslvpn solution.
Traditional SSL VPN through the port proxy method, the
After completing the OpenVpn Bridge Mode experiment under UbuntuServer10.04, this experiment on the routing mode involves two modes: the bridging mode and the routing mode, let's take a look at the differences between the two modes. The above content is available on the Internet. I just organized them into tables to make it easier to compare and understand. Experiment environment: (1) topology: (2) The two routers are simulated using the Dynamips simu
Article title: use Openbsd and Openvpn to quickly establish an enterprise VPN. Linux is a technology channel of the IT lab in China. Includes basic categories such as desktop applications, Linux system management, kernel research, embedded systems, and open source.
Use openbsd + openvpn to quickly establish an enterprise vpn
Openvpn can work in two modes:
One is
OpenVPN multi-processing-netns container and iptablesCLUSTERIf you still indulge in the previous results and the imposed sighs, do not meditate and sublimate them.Ip netns add vpn1Ip link add veth0_vpn1 type veth peer name veth_vpn1Then, veth0_vpn1 is assigned to vpn1, and veth0_vpn2 is assigned to vpn2.Ip link set veth0_vpn1 netns vpn1Connect veth_vpn1, veth_vpn2, and eth0 together:Brctl addbr br0Now, run OpenVPN
Openvpn itself can use an HTTP proxy. That is to say, the openvpn client does not directly connect to the openvpn server, but uses an HTTP proxy for connection. This feature is the peripheral feature of openvpn, not its core, but it can solve many practical problems. It is equivalent to another tunnel outside the tunne
Company demand: Need to build a OpenVPN in the Japanese server, and then through the proxy way to visit foreign sites.
Server IP:
[root@li493-137 ~]# Ifconfig
Eth0 Link encap:ethernet hwaddr f2:3c:91:ae:0a:55
inet addr:57.17.20.30 bcast:57.17.20.255 mask:255.255.255.0
Inet6 ADDR:2400:8900::F03C:91FF:FEAE:A55/64 Scope:global
Inet6 ADDR:FE80::F03C:91FF:FEAE:A55/64 Scope:link
Up broadcast RUNNING multicast mtu:1500 metric:1
RX packets:4620022758
. However, one fatal weakness is that two ports are built. In most cases, penetrating NAT is an obstacle, so I finally gave up. Opensvn solves the NAT problem and does not have any problems in the internal network and public network tests.
The only limit for openvpn is that you cannot use the Windows built-in vpn Client. You need to install additional software. Fortunately, the installation process is very
Centos6.3 openvpn client Centos does not provide Openvpn by default, and there is no openvpn in The yum source. if you want to use yum for installation, install EPEL first. Www.2cto. comShell code wgethttp: // apt. sw. be/redhat/e...
Centos6.3 openvpn client Centos does not provide
Openvpn Bridge Mode in freebsd is probably the most popular semi-non-standard cross-platform VPN solution, with a large number of users and a pure userland implementation. it's pretty easy to set up, but I often forget certain steps so here's a tutorial for me to rememeber in the future :) Keywords: FreeBSD, OpenVPN, networkingI call OpenVPN semi-non-standard bec
Build openvpn based on user password authentication on CentOS 6.6 x64
I. Deployment
For more information about the deployment, see my previous article. Here we will simply modify the previous article.
Http://www.centoscn.com/image-text/config/2015/0717/5874.html
Ii. Modification
# Vim/etc/openvpn/server. conf
Add the following lines of data at the end of the configuration file:
Script-security 3 system
Au
Server Configuration
1 , Installation
Openvpn
Rpm-IVHHttp://pkgs.repoforge.org/rpmforge-release/rpmforge-release-0.5.2-2.el6.rf.x86_64.rpm
Yum install openvpn-y
Of course, you can also download from this page:Http://openvpn.net/index.php/download.html
2 , Configure the server
2.1 Initialize the server
CD/etc/openvpn/
CP/usr/share/doc/
Openvpn construction in CentOS, centosopenvpn
OpenVPN is a VPN software based on tunnel encryption. The following describes how to install OpenVPN in CentOS 6.5:
Setenforce 0yum install-y openssl-devel lzorpm-ivh http://mirrors.sohu.com/fedora-epel/6/x86_64/epel-release-6-8.noarch.rpmcd/etc/yum. repos. d/cp epel. repo epel. repo. baksed-I's/^ secure list = https
OpenVPN is a very powerful VPN server software, and some netizens want to know how to make Windows connection use OpenVPN. So, today's small series for everyone in particular to organize a related article. Before learning this tutorial, please users to download OpenVPN client, and then follow this tutorial to learn and operate!
1, first open the
Key points and precautions for building openvpn for general enterprises in the centos Environment
Briefly describe the enterprise environment. the ISP is connected to the Firewall of China-made hillstone network. The public IP address is 58. x. The firewall directly connects to the Huawei layer-3 Switch (core). The firewall's intranet interface IP address is 192.168.199.254, and the Management IP address of the layer-3 switch is 192.168.199.1, which b
Enable Password Authentication for OPENVPN
1. Server Configuration
1. Modify the main configuration file of openvpn and add the following content:
[Root @ ttt openvpn] # cat/etc/openvpn/server. conf | more
######### Auth password ########Script-security 3 ### -- add script processing, such as password verificationAuth-
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.