A full-featured SSL VPN solution which can accomodate a wide range of configurations
The OpenVPN application was designed to be a full-featured SSL VPN solution which can accomodate a wide range of configurations, including remote access, site-to-site VPNs, WiFi security, and enterprise-scale remote access solutions with load balancing.
OpenVPN implements OSI layer 2 or 3 secure network extension using the industry standard SSL/TLS protocol, supports flexible client authentication methods based on certificates, smart cards, and/or 2-factor authentication, and allows user or group-specific access control policies using firewall rules applied to the VPN virtual interface. OpenVPN is not a web application proxy and does not operate through a web browser.
Here are some key features of “OpenVPN”:
· tunnel any IP subnetwork or virtual ethernet adapter over a single UDP or TCP port,
· configure a scalable, load-balanced VPN server farm using one or more machines which can handle thousands of dynamic connections from incoming VPN clients,
· use all of the encryption, authentication, and certification features of the OpenSSL library to protect your private network traffic as it transits the internet,
· use any cipher, key size, or HMAC digest (for datagram integrity checking) supported by the OpenSSL library,
· choose between static-key based conventional encryption or certificate-based public key encryption,
· use static, pre-shared keys or TLS-based dynamic key exchange,
· use real-time adaptive link compression and traffic-shaping to manage link bandwidth utilization,
· tunnel networks whose public endpoints are dynamic such as DHCP or dial-in clients,
· tunnel networks through connection-oriented stateful firewalls without having to use explicit firewall rules,
· tunnel networks over NAT,
· create secure ethernet bridges using virtual tap devices, and
· control OpenVPN using a GUI
What’s New in This Release: [ read full changelog ]
· Windows Vista-ready on both x86 and x64.
· OpenVPN GUI is now packaged in the Windows installer.
· topology subnet feature, allowing intuitive tun-based VPN subnets having 1 IP address per client.
· TAP-Win32 adapter can now be opened from non-administrator mode.
· PKCS #11 features for usage of cryptographic tokens (“smart cards”).
· multihome feature to enable UDP-based multihoming of the server on multiple interfaces.
· port-share feature to allow OpenVPN and an HTTPS server to share TCP port 443.
Please comments and give ratings. You may also report of broken or incorrect link using comments box below. Thanks!