OpenVPN

OpenVPN is a full-featured virtual private network (VPN) solution which can accomodate a wide range of configurations, including remote access, site-to-site VPNs, WiFi security, and enterprise-scale remote access solutions with load balancing, failover, and fine-grained access-controls.

OpenVPN implements OSI layer 2 or 3 secure network extension using the industry standard SSL/TLS protocol, supports flexible client authentication methods based on certificates, smart cards, and/or 2-factor authentication, and allows user or group-specific access control policies using firewall rules applied to the VPN virtual interface.

OpenVPN is not a web application proxy and does not operate through a web browser.

OpenVPN

License GNU GPL v2 Developer James Yonan Website www.openvpn.net Requirements TUN and/or TAP driver to allow user-space programs to control a virtual point-to-point IP or Ethernet device Optional: OpenSSL library, necessary for encryption, version 0.9.5 or higher LZO real-time compression library, required for link compression Pthread library Support: HOWTO, FAQ, Manuals, How to configure OpenVPN Selected Reviews: OS Reviews, Linux Journal, OSNews

Features include:

• Tunnel any IP subnetwork or virtual ethernet adapter over a single UDP or TCP port
• Configure a scalable, load-balanced VPN server farm using one or more machines which can handle thousands of dynamic connections from incoming VPN clients
• Use all of the encryption, authentication, and certification features of the OpenSSL library to protect your private network traffic as it transits the internet
• Use any cipher, key size, or HMAC digest (for datagram integrity checking) supported by the OpenSSL library
• Choose between static-key based conventional encryption or certificate-based public key encryption
• Use static, pre-shared keys or TLS-based dynamic key exchange
• Use real-time adaptive link compression and traffic-shaping to manage link bandwidth utilization,
• Tunnel networks whose public endpoints are dynamic such as DHCP or dial-in clients
• Tunnel networks through connection-oriented stateful firewalls without having to use explicit firewall rules
• Tunnel networks over NAT
• Create secure ethernet bridges using virtual tap devices
• Graphical User Interface

Last Updated Monday, May 05 2008 @ 08:30 AM EDT