Portal:VPN

Jump to: navigation, search

Welcome to the VPN Portal edit

VPN (Virtual Private Network) is a comprehensive network access solution that connects multiple private networks together, giving them controlled access to each other. The typical scenarios are:

  • To offer employee home office access to computer internal networks.
  • Secure communication between server networks across the public Internet.
Icon-warning.png
Warning: VPN encrypts network traffic and the use of encrypted network traffic is illegal in countries where such activities are outlawed. Please observe and comply with advice from your local regulatory authority in regards to network traffic encryption before considering to use VPN.

VPN Protocols and Solutions edit

There are various open technologies that implement VPN, each with its own strengths:

  • WireGuard® is an extremely simple yet fast and modern VPN that utilizes state-of-the-art cryptography. It aims to be faster, simpler, leaner, and more useful than IPsec, while avoiding the massive headache. It intends to be considerably more performant than OpenVPN. WireGuard is designed as a general purpose VPN for running on embedded interfaces and super computers alike, fit for many different circumstances. Initially released for the Linux kernel, it is now cross-platform (Windows, macOS, BSD, iOS, Android) and widely deploy-able. It is currently under heavy development, but already it might be regarded as the most secure, easiest to use, and simplest VPN solution in the industry.
  • IPSec is an open and standardized VPN protocol widely supported by most systems/devices. It is available on Linux, Unix, Windows, Android, Blackberry, iOS and MacOS, without the need for third-party software solution. On openSUSE, the server and client softwares are available in package "strongswan", and easily configurable via YaST VPN module (yast2-vpn).
  • L2TP/IPSec is an open VPN protocol that combines the confidentiality provided by IPSec with an additional layer of L2TP tunnel. It really does not provide more features than using IPSec alone. L2TP/IPSec VPN is natively supported by Linux, Unix, Windows, Android, iOS and MacOS, without the need for third-party software solution. On openSUSE, the server and client softwares are available in package "xl2tpd" in addition to "strongswan".
  • OpenVPN is a commercially produced open-source VPN implementation based on SSL protocol. It is available on most Linux and Unix distributions; with a manual software download and installation, OpenVPN is also available on Windows, iOS, MacOS. On openSUSE, the server and client softwares are available in package "openvpn".
  • PPTP is a legacy VPN protocol, its encryption technology is crackable with modern computers, hence PPTP is not secure and usage should be avoided. On openSUSE, the server software is available in package "pptpd" and client is available in package "pptp".

YaST VPN Module Availability edit

Available
Icon-distribution.png

YaST VPN configuration editor is available on Tumbleweed in package "yast2-vpn".

The VPN configuration editor is available on openSUSE 15.6 and SUSE Linux Enterprise 15 SP6.

User Manual edit

Icon-installation.png

YaST VPN Module - Create IPSec VPN server and clients using a graphical YaST module.

Icon-question.png

YaST VPN Module Troubleshoot - Troubleshoot common problems with IPSec VPN server and clients created by the YaST VPN module.

Icon-WireGuard.png

Installation and configuration of WireGuard - How to use WireGuard in combination with Firewalld.

Retrieved from "https://en.opensuse.org/index.php?title=Portal:VPN&oldid=73777"