It goes without saying that it might be a good idea to be careful about what you do on an unsecured wifi. And there are times, such as when travelling, when the only connectivity option is a public, unsecured wifi.
Normally, you just avoid doing anything sensitive while on such connection, but during longer trips, for example, it might be difficult.
There are tons of VPN providers nowadays and these usually make your client setup as easy as possible, but if you want to use your own server for this then for some reason I found that the client configuration part can still take time as the documentation is a bit suboptimal to say the least.
Anyways, long story short, the client configuration is acutally straightforward.
You only need to import one configuration file into your iOS device and in this file you can copy/paste all the certs and key.
Continue reading “Setting up OpenVPN client on iOS”
All of my linux servers are connected over OpenVPN and now came the turn for my new FreeBSD droplet to join them.
Ran into one small issue. Upon installing and configuring OpenVPN I was getting this error:
Sun Jul 12 17:59:49 2015 us=222242 Cannot allocate TUN/TAP dev dynamically
Sun Jul 12 17:59:49 2015 us=222330 Exiting due to fatal error
Since I am using tun and not tap, tried manually loading
[fx@badger ~]$ sudo kldload if_tun
kldload: can't load if_tun: module already loaded or in kernel
But that just showed that this is not the problem.
tun interface manually and no probs:
[fx@badger ~]$ sudo ifconfig tun0 create
[fx@badger ~]$ sudo ifconfig tun0
tun0: flags=8010<POINTOPOINT,MULTICAST> metric 0 mtu 1500
That pointed me to my
openvpn.conf config and sure enough I had specified my VPN device as “VPN”:
Ths works great in Linux but apparently not in FreeBSD. Changed that to
tun0 and problem resolved. Yay.
So just for the record, working OpenVPN installation steps:
sudo pkg install openvpn
Enable OpenVPN starting at boot by adding this to
Configure it, the default config file is
/usr/local/etc/openvpn/openvpn.conf and looks like you have to create
/usr/local/etc/openvpn directory manually.
remote openvpn.server.somewhere.com 1194
# certs that you got from vpn server
# don't forget to make sure this is rotated