User Tools

Site Tools


doc:howto:vpn.overview

VPN overview

  1. The term VPN stands for Virtual private network.
  2. Like a DMZ a VPN is a security concept, it is not a protocol (like SSH) nor a certain software package
  3. There are multiple software packages available to set up a VPN between two or more hosts
  4. they all use the Server ↔ Client concept and usually are incompatible with one another!
  5. have look at the OSI model and make yourself aware that the encryption can be applied at different layers of the communications stack
If your hardware has some sort of Cryptographic Hardware Acceleration you should make sure it is supported by your OS (OpenWrt) and enabled.
Migration and merger wanted: We already have a couple of articles about VPN on OpenWrt: http://wiki.openwrt.org/?do=search&id=vpn you can start from scratch or migrate them

IPsec-based VPN Solutions

strongSwan

strongSwan

Racoon

Racoon

OpenSwan

Openswan

OpenVPN-based VPN Solutions

Articles we have:

Articles we want instead:

Once you set up a VPN server on your OpenWrt router, you (and the other participants) will need to each install and configure a VPN client (compatible with the VPN server) on each of your host machines. For HowTos regarding that, you should visit the Wiki/Forum of your OS!

OpenConnect-based VPN Solutions

You may setup openwrt as an OpenConnect VPN client or server. This is a protocol based on SSL/TLS and datagram TLS and is compatible with CISCO's AnyConnect SSL VPN.

  • Server side requirements:

There are various openconnect clients, including in GNOME NetworkManager, Windows, and Android.

PPTP-based VPN Solutions

Other VPN solutions

VPN and mesh

External Documentation

doc/howto/vpn.overview.txt · Last modified: 2014/11/02 22:57 by nmav