On 01/01/2014 11:49 AM, Nicholas Stewart wrote: > I have a couple Linode & DigitalOcean virtual private servers (running > Ubuntu 12.04) and I'd like to setup a VPN so that my macbook can > securely connect through a VPN and have my network traffic go through > the virtual private servers. This is useful for traveling and working > in places with public wifi. > > I have successfully setup & used a socks proxy and now I want to learn > how to setup a full blown vpn. > > I googled around and found what looked like a good tutorial. I > followed the tutorial step by step but somehow my iptables got messed > up and I couldn't quite get them fixed so I nuked the server. > > What tutorials do you recommend looking at? > > I know I could pay a few bucks a month for a VPN but I want to set it > up myself to further my education.
I use OpenVPN myself, and use TunnelBlick on the Macs to connect to it. I use a routing vpn setup, where my clients all end up on a vpn subnet. The nice part about this is you can use iptables on the vpn server to do NATting and routing and filtering. Also vpn clients can export access to other subnets to the rest of the wide area network and it all works magically. I have two different forms of OpenVPN running. One is certificate-based (used for static devices like routers in homes), and password-based for laptops, etc. Both need at least a certificate authority and a key/cert pair for the server itself. Here's a link where I posted my configs a couple of years ago: http://plug.org/pipermail/plug/2010-April/022791.html I use xca to manage my certificates. /* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
