OpenVPN Security Advisory: Dec 14, 2018
Action needed: Important update for OpenVPN Access Server

Getting started with Access Server

What is OpenVPN Access Server?

To get started with OpenVPN Access Server, it’s helpful to understand these terms:

  • OpenVPN: This is the name of the open source project created by James Yonan which creates a VPN tunnel program that is free, fast, and works on standard TCP and UDP protocols over the internet.
  • OpenVPN, Inc: This is the company, founded by Francis Dinha and James Yonan. The company is still very active today in both the open source community and project for OpenVPN — as well as providing business enterprise solutions based on the OpenVPN code with extra features and additional support.
  • OpenVPN Access Server: Built on the open source OpenVPN project, this is the commercial product. It is a software application, unlike some VPNs which require specialized hardware, and can be deployed in various configurations included virtual appliances, software packages, and on the cloud.

Ready to get started with Access Server?

1:

Determine your network configuration and IP address of your server. This will help you decide which configuration fits your needs — as well as the location for the VPN, web admin UI, and client UI.

2:

Obtain a license key or begin with two, free simultaneous connections. Visit OpenVPN.net to purchase a key, or get started evaluating the product with two connections at no cost.

3:

Install OpenVPN Access Server on the server configuration of your preference:

Virtual Appliance

On the cloud

VPN SOFTWARE PACKAGES ON LINUX

Access Server is available on Ubuntu LTS, Debian, Red Hat Enterprise Linux, CentOS, and Amazon Linux 2, in 32 bits and 64 bits versions where applicable.

4:

Complete the initial configuration of OpenVPN Access Server. Once installation completes, the ovpn-init configuration tool should automatically run, allowing you to configure it. If you need to run the tool again, refer to “Why can’t I access the adminclient UI” for instructions.

5:

Use the Admin Web UI to complete configuration. Once you’ve completed the initial configuration, open the URL of the OpenVPN Access Server (may be found at https://x.x.x.x:943/admin where the x.x.x.x represents your IP address from initial configuration). Log in with the root username and password.

6:

Users authenticate with the Connect Client. The user opens a web browser, enters the URL or IP address for your configured network, and signs on with a username and password. Once authenticated, the Connect Client automatically generates an OpenVPN client configuration file. Choose from pre-configured installation options.

7:

User connects to VPN. After the user has authenticated, the client software will initiate a connection.

Information about Access Server Solutions

OpenVPN Access Server supports many setups and deployments. Here are some details with links to more information about each of those.

FAQ

We provide detailed answers to FAQ on our site, under our Commercial VPN Server Resources page. Refer to that if you don’t see your question in this list:

General

  • Where do I find the Client UI?
  • On this page is an explanation of how the user can easily install the OpenVPN Connect Client with a personalized user profile configuration.

    Where do I find the Client UI?

  • How can I find all of the OpenVPN clients that I can use with Access Server?
  • This is the page on the community website that tries to list all other clients.

    How can I find all of the OpenVPN clients that I can use with Access Server?

  • What is DNS?
  • Domain Name System; it is how the Internet resolves names like openvpn.net to an IP address like 123.45.6789. More information under the FAQ section in the link.

    What is DNS?

  • What is IP forwarding?
  • IP forwarding is the ability for the OS to accept incoming network packets that it passes on to another network. Read more in the link.

    What is IP forwarding?

  • What are UDP and TCP?
  • User Datagram Protocol and Transmission Control Protocol are two different methods of transferring data over the internet. Details about why OpenVPN works best with UDP in the link.

    What are UDP and TCP?

  • What is the OSI Layer model?
  • This is an abstracted view of a computer network, explained in the link.

    What is the OSI Layer model?

  • What are SSL web certificates?
  • Secure Sockets Layer certifications are part of a security layer for internet traffic. Details in the link.

    What are SSL web certificates?

  • Where do I go to troubleshoot making a connection?
  • This page has troubleshooting steps to help you resolve issues with clients connecting to the VPN.

    Where do I go to troubleshoot making a connection?

  • How do I test my connection?
  • This information can help you test your connections.

    How do I test my connection?

Configuration

Licenses

  • How do I find the free two user license key?
  • When you install OpenVPN Access Server and do not provide a license key, it automatically allows two simultaneous VPN tunnel connections.

    How do I find the free two user license key?

  • How can I purchase a license?
  • Log in with your OpenVPN.net account at the link.

    How can I purchase a license?

  • Does a failover license key cost?
  • No, you can request these free of charge if using our integrated failover functionality. More info on the link.

    Does a failover license key cost?

  • How can I transfer keys?
  • We will verify your information and help you transfer the keys. This explains how.

    How can I transfer keys?

  • Can I get a refund for a license?
  • Yes, for any license key that has not been activated on a server and is still valid (not expired). More details in the link.

    Can I get a refund for a license?

Windows

MacOS

Android

iOS