OpenVPN

OSX Mail crashes when using TunnelBlick and setting DNS/WINS

I encounter edge cases. It’s not fun. This particular situation caused OXS Mail.app to crash when using a VPN. The outline This particular edge case involved the following: OSX 10.11.1 (15B42) Tunnelblick 3.5.5 (build 4270.4461) Mail.app When running Mail.app, it would crash within 5-10 seconds. The full dump of the crash has been sent to …

OSX Mail crashes when using TunnelBlick and setting DNS/WINS Read More »

OpenVPN clients don’t react well when the server goes down

I had a power failure at home tonight. The clients did not react well to the outage. They aren’t at home. They’re out there on the internets. Jul 9 01:02:49 tallboy openvpn[40792]: UDPv4 link local (bound): [AF_INET]10.233.228.194:1194 Jul 9 01:03:51 tallboy openvpn[40792]: UDPv4 link local (bound): [AF_INET]10.233.228.194:1194 Jul 9 01:04:53 tallboy openvpn[40792]: UDPv4 link local …

OpenVPN clients don’t react well when the server goes down Read More »

Accessing FreeBSD Jails over OpenVPN

With this new server, I am taking a new approach. Each jail will have at least three IP addresses: The public IP4 address, used by internet facing services (e.g. http or https) The public IPv6 address, similar to the above A VPN address, used for system administration and private services (e.g. nrpe) In this article, …

Accessing FreeBSD Jails over OpenVPN Read More »

running OpenVPN as something other than nobody:nobody

I am a big fan of OpenVPN. I’ve been using it since 2008. It’s been extremely reliable and stable. Out of the box, at least on FreeBSD, it runs as nobody:nobody (not really, but that’s how most people configure it). I can’t point to am immediate security issue with this situation. However, I’d prefer it …

running OpenVPN as something other than nobody:nobody Read More »

Accessing every jail from a VPN

I’ve been meeting a few challenges with running an instance of bacula-fd in each of my jails. Most of them are related to networking. Perhaps my deployment strategies are imposing too many restrictions. The challenges arise on the jail hosts which are not behind my firewall at home. Each of those servers is accessible through …

Accessing every jail from a VPN Read More »