[BlueOnyx:20937] New BlueOnyx PKG available: OpenVPN

Michael Stauber mstauber at blueonyx.it
Thu Apr 20 16:25:22 -05 2017 

Hi all,

A new Package is available in the BlueOnyx shop. Both stand alone and as
part of the "All Packages Bundle":

================
*** OpenVPN ***
================

This package is available for the following platforms:

 - BlueOnyx 5207R
 - BlueOnyx 5208R
 - BlueOnyx 5209R
 - Aventurin{e} 6108R

Link: http://shop.blueonyx.it/blueonyx/system/openvpn.html

Quick Overview
===============

OpenVPN is an open-source VPN application that lets you create and join
a private network securely over the public Internet.

This Package provides OpenVPN (v2.4.1-2) integration for BlueOnyx 5207R,
5208R, 5209R and Aventurin{e} 6108R.


Details:
========

It allows your users to safely connect to your server, but also to use
your server as VPN endpoint for their internet connection. This can
server multiple purposes such as encasing all connections to your server
(Email, FTP, Web - even SSH) with an additional layer of security and
encryption.So even unsecure protocols such as regular POP3 or IMAP or
Web accesses will be encrypted between the users PC and your server.
Which makes OpenVPN ideal if the server is accessed via untrusted
internet access such as public Wifi-hotspots.


Additionally your users can use OpenVPN to access other destinations in
tne internet, in which case your VPN server will appear to be the origin
of the connection, which masks the real users IP address and his
geographical origin.


This PKG integrates nicely into the BlueOnyx GUI and gives you, your
administrators and end users an easy to understand interface to manage
OpenVPN and/or to download their OpenVPN connection details.


The OpenVPN connection details (a standard OVPN file - and a separate
Zip with the OVPM file, the public OpenVPN server certificate and the
client certificates) can be downloaded by each user with activated
OpenVPN access via their Personal Profile GUI page. These details can
then be used with OpenVPN client applications such as "OpenVPN Connect"
(available for Windows, Mac, Apple and Android mobile devices or Linux).


You as server administrator can also create and revoke OpenVPN access
certificates via the GUI at any time. You can configure in the OpenVPN
server settings if you want to allow siteAdmins to be able to manage
OpenVPN access for Vsite users under the siteAdmin's control, or if you
reserve the right to grant OpenVPN access only selectively to yourself.
In that case systemAdmin access is required to enable/disable OpenVPN
access of selected users.


This package also has provisions to open the required UDP port
automatically in the APF firewall (if installed), which can be done via
the GUI in the OpenVPN server settings by ticking a checkbox. The
required IPtables postrouting rule will also be added automatically
either to APF (if installed) or the regular IPTables configuration.


Please note: Under Aventurin{e} or OpenVZ the VPS in question with the
OpenVPN package installed must have the capability Net/TUN enabled. In
Aventurin{e} this can be done via the GUI interface under VPS / Basic
Settings by ticking the respective checkbox and saving. Also make sure
your Aventurin{e} node has the kernel module "tun" loaded ("modprobe tun").

-- 
With best regards

Michael Stauber

More information about the Blueonyx mailing list