#StackBounty: #routing #openvpn "IP-Passthrough" OpenVPN configuration

Bounty: 50

I want to create a VPN configuration that allows a client of a OpenVPN server to use the public IP of the server, as if it was its own IP, connected to the IP.

Here is the network layout right now:

                                            +----------------------------------------------------------+
                                            |Server machine (Linux)                                    |
                                            |                                                          |
                                            |                                                          |
                                            |                                                          |
                           Data center----->O<--eth0-----------+                                       |
                                            |  |79.102.91.184  |                                       |
                                            |  |67.248.62.166  |                                       |
                                            |  |94.187.137.76  |                                       |
                                            |  |189.180.86.216 |                                       |
                                            |  |219.167.189.118|                                       |
                                            |  +---------------+                                       |
                                            |                                                          |
                                            +----------------------------------------------------------+

                 +------------------------------------------+          +-------------------------------+
                 |Router with NAT                           |          |  Client machine (Linux)       |
                 |                  NAT                     |          |                               |
                 |               +--------+                 |          |                               |
                 |               |        |                 |   LAN    |                               |
DSL to Internet->O<---eth0-------+-+    +-+---------eth1-+->O<-------->O<---eth0----------------+      |
                 |  |24.174.216.166|    |192.168.2.1/24  |  |          |  |192.168.2.10/24      |      |
                 |  |              |    |                |  |          |  |Router 192.168.2.1   |      |
                 |  |              |    |                |  |          |  |                     |      |
                 |  +--------------+    +----------------+  |          |  +---------------------+      |
                 |                                          |          |                               |
                 +------------------------------------------+          +-------------------------------+

I want to set up a OpenVPN server on the Server machine. Then, a client should be able to connect to this VPN through the Internet, for example by connecting to 79.102.91.184 (first IP of the server.)

On the client machine, a tap or tun adapter should be created, that has one of the other publicly routable IPs of the server assigned and correctly routed. For example, the client can now communicate with the internet using the IP 67.248.62.166 (and the server can not be reached under this IP anymore).

How can I set up OpenVPN in a way that makes this kind of routing scenario possible?


Get this bounty!!!

#StackBounty: #dns #openvpn #ssl #dyndns #ddclient How do I verify DDCLIENT is using SSL and if it's not, how do I force it?

Bounty: 100

I have been following this guide on setting up VPN on my pi. Part of the steps are to set up and configure a dynamic dns service. I have created several accounts across multiple platforms. No Ip and dynamicdns are two to name. Below is an output of my ddclient.conf file, it connects fine on both dynamic dns sites.

daemon=60                               # check every 60 seconds
syslog=yes                              # log update msgs to syslog
mail=root                               # mail all msgs to root
mail-failure=root                       # mail failed update msgs to root
pid=/var/run/ddclient.pid               # record PID in file.
ssl=yes                                 # use ssl-support.  Works with
                                        # ssl-library
use=web, web=myip.dnsdynamic.com        # get ip from server.
server=www.dnsdynamic.org               # default server
login=YOURUSERNAME                      # default login
password=YOURPASSWORD                       # default password
server=www.dnsdynamic.org,              
protocol=dyndns2                        
MYDOMAIN.dnsdynamic.COM

My issue is that in this article, they illustrate how to verify if your pi is connecting over SSL. When I run

sudo ddclient -verbose -debug -noquiet -query 

it shows connecting over HTTP vs HTTPS or SSL for each site. I verified that ssl was installed by running

sudo apt-get install ssh libio-socket-ssl-perl

Any ideas on if it’s connecting via ssl or how I can force it to? I have ran through this article too. I did see that ddclient stated that it would use SSL if available, I’m wondering if this is a limitation to using a free dynamicdns site or if I’m overlooking something. The articles made it appear as though the sites I’m using like no ip and dnsdynamic support SSL.


Get this bounty!!!

#StackBounty: #dns #openvpn #ssl #dyndns #ddclient How do I verify DDCLIENT is using SSL and if it's not, how do I force it?

Bounty: 100

I have been following this guide on setting up VPN on my pi. Part of the steps are to set up and configure a dynamic dns service. I have created several accounts across multiple platforms. No Ip and dynamicdns are two to name. Below is an output of my ddclient.conf file, it connects fine on both dynamic dns sites.

daemon=60                               # check every 60 seconds
syslog=yes                              # log update msgs to syslog
mail=root                               # mail all msgs to root
mail-failure=root                       # mail failed update msgs to root
pid=/var/run/ddclient.pid               # record PID in file.
ssl=yes                                 # use ssl-support.  Works with
                                        # ssl-library
use=web, web=myip.dnsdynamic.com        # get ip from server.
server=www.dnsdynamic.org               # default server
login=YOURUSERNAME                      # default login
password=YOURPASSWORD                       # default password
server=www.dnsdynamic.org,              
protocol=dyndns2                        
MYDOMAIN.dnsdynamic.COM

My issue is that in this article, they illustrate how to verify if your pi is connecting over SSL. When I run

sudo ddclient -verbose -debug -noquiet -query 

it shows connecting over HTTP vs HTTPS or SSL for each site. I verified that ssl was installed by running

sudo apt-get install ssh libio-socket-ssl-perl

Any ideas on if it’s connecting via ssl or how I can force it to? I have ran through this article too. I did see that ddclient stated that it would use SSL if available, I’m wondering if this is a limitation to using a free dynamicdns site or if I’m overlooking something. The articles made it appear as though the sites I’m using like no ip and dnsdynamic support SSL.


Get this bounty!!!

#StackBounty: #dns #openvpn #ssl #dyndns #ddclient How do I verify DDCLIENT is using SSL and if it's not, how do I force it?

Bounty: 100

I have been following this guide on setting up VPN on my pi. Part of the steps are to set up and configure a dynamic dns service. I have created several accounts across multiple platforms. No Ip and dynamicdns are two to name. Below is an output of my ddclient.conf file, it connects fine on both dynamic dns sites.

daemon=60                               # check every 60 seconds
syslog=yes                              # log update msgs to syslog
mail=root                               # mail all msgs to root
mail-failure=root                       # mail failed update msgs to root
pid=/var/run/ddclient.pid               # record PID in file.
ssl=yes                                 # use ssl-support.  Works with
                                        # ssl-library
use=web, web=myip.dnsdynamic.com        # get ip from server.
server=www.dnsdynamic.org               # default server
login=YOURUSERNAME                      # default login
password=YOURPASSWORD                       # default password
server=www.dnsdynamic.org,              
protocol=dyndns2                        
MYDOMAIN.dnsdynamic.COM

My issue is that in this article, they illustrate how to verify if your pi is connecting over SSL. When I run

sudo ddclient -verbose -debug -noquiet -query 

it shows connecting over HTTP vs HTTPS or SSL for each site. I verified that ssl was installed by running

sudo apt-get install ssh libio-socket-ssl-perl

Any ideas on if it’s connecting via ssl or how I can force it to? I have ran through this article too. I did see that ddclient stated that it would use SSL if available, I’m wondering if this is a limitation to using a free dynamicdns site or if I’m overlooking something. The articles made it appear as though the sites I’m using like no ip and dnsdynamic support SSL.


Get this bounty!!!

#StackBounty: #dns #openvpn #ssl #dyndns #ddclient How do I verify DDCLIENT is using SSL and if it's not, how do I force it?

Bounty: 100

I have been following this guide on setting up VPN on my pi. Part of the steps are to set up and configure a dynamic dns service. I have created several accounts across multiple platforms. No Ip and dynamicdns are two to name. Below is an output of my ddclient.conf file, it connects fine on both dynamic dns sites.

daemon=60                               # check every 60 seconds
syslog=yes                              # log update msgs to syslog
mail=root                               # mail all msgs to root
mail-failure=root                       # mail failed update msgs to root
pid=/var/run/ddclient.pid               # record PID in file.
ssl=yes                                 # use ssl-support.  Works with
                                        # ssl-library
use=web, web=myip.dnsdynamic.com        # get ip from server.
server=www.dnsdynamic.org               # default server
login=YOURUSERNAME                      # default login
password=YOURPASSWORD                       # default password
server=www.dnsdynamic.org,              
protocol=dyndns2                        
MYDOMAIN.dnsdynamic.COM

My issue is that in this article, they illustrate how to verify if your pi is connecting over SSL. When I run

sudo ddclient -verbose -debug -noquiet -query 

it shows connecting over HTTP vs HTTPS or SSL for each site. I verified that ssl was installed by running

sudo apt-get install ssh libio-socket-ssl-perl

Any ideas on if it’s connecting via ssl or how I can force it to? I have ran through this article too. I did see that ddclient stated that it would use SSL if available, I’m wondering if this is a limitation to using a free dynamicdns site or if I’m overlooking something. The articles made it appear as though the sites I’m using like no ip and dnsdynamic support SSL.


Get this bounty!!!

#StackBounty: #dns #openvpn #ssl #dyndns #ddclient How do I verify DDCLIENT is using SSL and if it's not, how do I force it?

Bounty: 100

I have been following this guide on setting up VPN on my pi. Part of the steps are to set up and configure a dynamic dns service. I have created several accounts across multiple platforms. No Ip and dynamicdns are two to name. Below is an output of my ddclient.conf file, it connects fine on both dynamic dns sites.

daemon=60                               # check every 60 seconds
syslog=yes                              # log update msgs to syslog
mail=root                               # mail all msgs to root
mail-failure=root                       # mail failed update msgs to root
pid=/var/run/ddclient.pid               # record PID in file.
ssl=yes                                 # use ssl-support.  Works with
                                        # ssl-library
use=web, web=myip.dnsdynamic.com        # get ip from server.
server=www.dnsdynamic.org               # default server
login=YOURUSERNAME                      # default login
password=YOURPASSWORD                       # default password
server=www.dnsdynamic.org,              
protocol=dyndns2                        
MYDOMAIN.dnsdynamic.COM

My issue is that in this article, they illustrate how to verify if your pi is connecting over SSL. When I run

sudo ddclient -verbose -debug -noquiet -query 

it shows connecting over HTTP vs HTTPS or SSL for each site. I verified that ssl was installed by running

sudo apt-get install ssh libio-socket-ssl-perl

Any ideas on if it’s connecting via ssl or how I can force it to? I have ran through this article too. I did see that ddclient stated that it would use SSL if available, I’m wondering if this is a limitation to using a free dynamicdns site or if I’m overlooking something. The articles made it appear as though the sites I’m using like no ip and dnsdynamic support SSL.


Get this bounty!!!

#StackBounty: #dns #openvpn #ssl #dyndns #ddclient How do I verify DDCLIENT is using SSL and if it's not, how do I force it?

Bounty: 100

I have been following this guide on setting up VPN on my pi. Part of the steps are to set up and configure a dynamic dns service. I have created several accounts across multiple platforms. No Ip and dynamicdns are two to name. Below is an output of my ddclient.conf file, it connects fine on both dynamic dns sites.

daemon=60                               # check every 60 seconds
syslog=yes                              # log update msgs to syslog
mail=root                               # mail all msgs to root
mail-failure=root                       # mail failed update msgs to root
pid=/var/run/ddclient.pid               # record PID in file.
ssl=yes                                 # use ssl-support.  Works with
                                        # ssl-library
use=web, web=myip.dnsdynamic.com        # get ip from server.
server=www.dnsdynamic.org               # default server
login=YOURUSERNAME                      # default login
password=YOURPASSWORD                       # default password
server=www.dnsdynamic.org,              
protocol=dyndns2                        
MYDOMAIN.dnsdynamic.COM

My issue is that in this article, they illustrate how to verify if your pi is connecting over SSL. When I run

sudo ddclient -verbose -debug -noquiet -query 

it shows connecting over HTTP vs HTTPS or SSL for each site. I verified that ssl was installed by running

sudo apt-get install ssh libio-socket-ssl-perl

Any ideas on if it’s connecting via ssl or how I can force it to? I have ran through this article too. I did see that ddclient stated that it would use SSL if available, I’m wondering if this is a limitation to using a free dynamicdns site or if I’m overlooking something. The articles made it appear as though the sites I’m using like no ip and dnsdynamic support SSL.


Get this bounty!!!

#StackBounty: #dns #openvpn #ssl #dyndns #ddclient How do I verify DDCLIENT is using SSL and if it's not, how do I force it?

Bounty: 100

I have been following this guide on setting up VPN on my pi. Part of the steps are to set up and configure a dynamic dns service. I have created several accounts across multiple platforms. No Ip and dynamicdns are two to name. Below is an output of my ddclient.conf file, it connects fine on both dynamic dns sites.

daemon=60                               # check every 60 seconds
syslog=yes                              # log update msgs to syslog
mail=root                               # mail all msgs to root
mail-failure=root                       # mail failed update msgs to root
pid=/var/run/ddclient.pid               # record PID in file.
ssl=yes                                 # use ssl-support.  Works with
                                        # ssl-library
use=web, web=myip.dnsdynamic.com        # get ip from server.
server=www.dnsdynamic.org               # default server
login=YOURUSERNAME                      # default login
password=YOURPASSWORD                       # default password
server=www.dnsdynamic.org,              
protocol=dyndns2                        
MYDOMAIN.dnsdynamic.COM

My issue is that in this article, they illustrate how to verify if your pi is connecting over SSL. When I run

sudo ddclient -verbose -debug -noquiet -query 

it shows connecting over HTTP vs HTTPS or SSL for each site. I verified that ssl was installed by running

sudo apt-get install ssh libio-socket-ssl-perl

Any ideas on if it’s connecting via ssl or how I can force it to? I have ran through this article too. I did see that ddclient stated that it would use SSL if available, I’m wondering if this is a limitation to using a free dynamicdns site or if I’m overlooking something. The articles made it appear as though the sites I’m using like no ip and dnsdynamic support SSL.


Get this bounty!!!

#StackBounty: #dns #openvpn #ssl #dyndns #ddclient How do I verify DDCLIENT is using SSL and if it's not, how do I force it?

Bounty: 100

I have been following this guide on setting up VPN on my pi. Part of the steps are to set up and configure a dynamic dns service. I have created several accounts across multiple platforms. No Ip and dynamicdns are two to name. Below is an output of my ddclient.conf file, it connects fine on both dynamic dns sites.

daemon=60                               # check every 60 seconds
syslog=yes                              # log update msgs to syslog
mail=root                               # mail all msgs to root
mail-failure=root                       # mail failed update msgs to root
pid=/var/run/ddclient.pid               # record PID in file.
ssl=yes                                 # use ssl-support.  Works with
                                        # ssl-library
use=web, web=myip.dnsdynamic.com        # get ip from server.
server=www.dnsdynamic.org               # default server
login=YOURUSERNAME                      # default login
password=YOURPASSWORD                       # default password
server=www.dnsdynamic.org,              
protocol=dyndns2                        
MYDOMAIN.dnsdynamic.COM

My issue is that in this article, they illustrate how to verify if your pi is connecting over SSL. When I run

sudo ddclient -verbose -debug -noquiet -query 

it shows connecting over HTTP vs HTTPS or SSL for each site. I verified that ssl was installed by running

sudo apt-get install ssh libio-socket-ssl-perl

Any ideas on if it’s connecting via ssl or how I can force it to? I have ran through this article too. I did see that ddclient stated that it would use SSL if available, I’m wondering if this is a limitation to using a free dynamicdns site or if I’m overlooking something. The articles made it appear as though the sites I’m using like no ip and dnsdynamic support SSL.


Get this bounty!!!

#StackBounty: #dns #openvpn #ssl #dyndns #ddclient How do I verify DDCLIENT is using SSL and if it's not, how do I force it?

Bounty: 100

I have been following this guide on setting up VPN on my pi. Part of the steps are to set up and configure a dynamic dns service. I have created several accounts across multiple platforms. No Ip and dynamicdns are two to name. Below is an output of my ddclient.conf file, it connects fine on both dynamic dns sites.

daemon=60                               # check every 60 seconds
syslog=yes                              # log update msgs to syslog
mail=root                               # mail all msgs to root
mail-failure=root                       # mail failed update msgs to root
pid=/var/run/ddclient.pid               # record PID in file.
ssl=yes                                 # use ssl-support.  Works with
                                        # ssl-library
use=web, web=myip.dnsdynamic.com        # get ip from server.
server=www.dnsdynamic.org               # default server
login=YOURUSERNAME                      # default login
password=YOURPASSWORD                       # default password
server=www.dnsdynamic.org,              
protocol=dyndns2                        
MYDOMAIN.dnsdynamic.COM

My issue is that in this article, they illustrate how to verify if your pi is connecting over SSL. When I run

sudo ddclient -verbose -debug -noquiet -query 

it shows connecting over HTTP vs HTTPS or SSL for each site. I verified that ssl was installed by running

sudo apt-get install ssh libio-socket-ssl-perl

Any ideas on if it’s connecting via ssl or how I can force it to? I have ran through this article too. I did see that ddclient stated that it would use SSL if available, I’m wondering if this is a limitation to using a free dynamicdns site or if I’m overlooking something. The articles made it appear as though the sites I’m using like no ip and dnsdynamic support SSL.


Get this bounty!!!