How to setup OpenVPN on an Endian Firewall

{loadposition adposition4}

Overview

The ability to remotely connect to networks using a VPN tunnel is a valuable resource. Many networks, companies, and organizations have remote users that need access to the company network. {loadposition adposition5}This is often for database or server access, or possibly to manage the network resources. A VPN tunnel provides security through authentication and encryption and offers the user a lot of flexibility by placing their computer within the remote network. 

Most firewall devices like a Cisco ASA firewall or a Sonicwall firewall, come with a VPN server and client built into the operating system. The Endian Firewall Router uses the OpenVPN server and offers the user easy access to the OpenVPN client which is freely downloadable from the openvpn.net website. The Endian firewall EFW operating system is also freely downloadable from their website.

In the network pictured below, I installed EFW in a Virtualbox virtual machine with two virtual NICs. I am then able to place a Windows XP virtual machine behind the EFW firewall, simulating a multi-network environment. This is a good exercise because I can run tests and play with the entire virtual network from my Windows 7 laptop. In the video tutorials below, I configure and test OpenVPN services on an Endian firewall router using virtual machines. 

 

 

{loadposition adposition9}

Video Tutorials

Note!: In the tutorial, I use the downloaded CA certificate file from the EFW OpenVPN server, make sure you check the file’s file extension. You can rename the file and add the ".pem" file extension to it, which is the file extension reflected in my configuration file’s settings (see videos). 

In part 1, I diagram the virtual network, and the network connections and addressing 

{loadposition adposition4}

In part 2, I configure the OpenVPN server on the EFW firewall

 

 {loadposition adposition10}

In part 3, I configure the OpenVPN client and connect to the EFW OpenVPN server

 

{loadposition adposition8}

 

Author: Dan

Dan teaches computer networking and security classes at Central Oregon Community College.

Leave a Reply

Your email address will not be published. Required fields are marked *