04826nam 2200637Ia 450 991078111120332120231002211230.01-283-01292-897866130129201-84951-011-3(CKB)2550000000031200(EBL)950556(OCoLC)797916609(SSID)ssj0000471852(PQKBManifestationID)11312833(PQKBTitleCode)TC0000471852(PQKBWorkID)10428241(PQKB)11183346(Au-PeEL)EBL950556(CaPaEBR)ebr10450977(CaONFJC)MIL301292(MiAaPQ)EBC950556(PPN)227991656(EXLCZ)99255000000003120020110328d2011 uy 0engur|n|---|||||txtrdacontentcrdamediacrrdacarrierOpenVPN 2 Cookbook[electronic resource] 100 simple and incredibly effective recipes for harnessing the power of the OpenVPN 2 network /Jan Just KeilserBirmingham :Packt Publishing,c2011.1 online resource (356 pages)Includes index.1-84951-010-5 Cover; Copyright; Credits; About the Author; About the Reviewers; www.PacktPub.com; Table of Contents; Preface; Chapter 1: Point-to-Point Networks; Introduction; Shortest setup possible; OpenVPN secret keys; Multiple secret keys; Plaintext tunnel; Routing; Configuration files versus the command-line; Complete site-to-site setup; 3-way routing; Chapter 2: Client-server IP-only Networks; Introduction; Setting up the public and private keys; Simple configuration; Server-side routing; Using client-config-dir files; Routing: subnets on both sides; Redirecting the default gatewayUsing an 'ifconfig-pool' blockUsing the status file; Management interface; Proxy-arp; Chapter 3: Client-server Ethernet-style Networks; Introduction; Simple configuration-non-bridged; Enabling client-to-client traffic; Bridging-Linux; Bridging-Windows; Checking broadcast and non-IP traffic; External DHCP server; Using the status file; Management interface; Chapter 4: PKI, Certificates, and OpenSSL; Introduction; Certificate generation; xCA: a GUI for managing a PKI (Part 1); xCA: a GUI for managing a PKI (Part 2); OpenSSL tricks: x509, pkcs12, verify output; Revoking certificatesThe use of CRLsChecking expired/revoked certificates; Intermediary CAs; Multiple CAs: stacking, using --capath; Chapter 5: Two-factor Authentication with PKCS#11; Introduction; Initializing a hardware token; Getting a hardware token ID; Using a hardware token; Using the management interface to list PKCS#11 certificates; Selecting a PKCS#11 certificate using the management interface; Generating a key on the hardware token; Private method for getting a PKCS#11 certificate; Pin caching example; Chapter 6: Scripting and Plugins; Introduction; Using a client-side up/down scriptWindows login greeterUsing client-connect/client-disconnect scripts; Using a 'learn-address' script; Using a 'tls-verify' script; Using an 'auth-user-pass-verify' script; Script order; Script security and logging; Using the 'down-root' plugin; Using the PAM authentication plugin; Chapter 7: Troubleshooting OpenVPN: Configurations; Introduction; Cipher mismatches; TUN versus TAP mismatches; Compression mismatches; Key mismatches; Troubleshooting MTU and tun-mtu issues; Troubleshooting network connectivity; Troubleshooting client-config-dir issues; How to read the OpenVPN log filesChapter 8: Troubleshooting OpenVPN: RoutingIntroduction; The missing return route; Missing return routes when 'iroute' is used; All clients function except the OpenVPN endpoints; Source routing; Routing and permissions on Windows; Troubleshooting client-to-client traffic routing; Understanding the 'MULTI: bad source' warnings; Failure when redirecting the default gateway; Chapter 9: Performance Tuning; Introduction; Optimizing performance using 'ping'; Optimizing performance using iperf; OpenSSL cipher speed; Compression tests; Traffic shaping; Tuning UDP-based connectionsTuning TCP-based connections100 simple and incredibly effective recipes for harnessing the power of the OpenVPN 2 networkExtranets (Computer networks)Operating systems (Computers)Extranets (Computer networks)Operating systems (Computers)004.6004.678Keilser Jan Just1577394MiAaPQMiAaPQMiAaPQBOOK9910781111203321OpenVPN 2 Cookbook3855964UNINA