This document is the "final report" for
Project 101, which was concerned with bringing into service the
OpenVPN endpoints which had been running as a test not-a-service for
quite a while before the project itself officially started.
The project itself went off pretty smoothly, and no real difficulties
were encoutered. There are only a couple of things worth noting:
- The elapsed time for the project was so long as a result of the
Appleton Tower refurbishment dragging out. It had always been intended to
put one endpoint in AT and the other in the Forum, and the project was
essentally just ticking over for much of the time until this could be
- Some time was spent fighting over apparent bugs (or at least
misfeatures) in NetworkManager and Windows XP. The former doesn't seem
to import routes correctly, while the latter seemed to have certificate-chaining
bugs which mean that kerberos+kx509 authentication didn't work as desired.
The former will be revisited later; the latter is now working with the
current (May 2010) XP patches, and instructions added to the
to use the Informatics OpenVPN Service" page.
The actual work expended on the project amounted to no more than a
few days, spread over several years (the initial version of lcfg-openvpn
dates from 2003), to:
- Become familiar with OpenVPN
- Write the initial version of the component (shared-secret)
- Port to 2.1.x and add TLS-server mode
- Tidy up and improve resource parameterisation, in the light of experience
- Evaluate authentication options
- Try non-DICE (XP, Fedora) and advise on Mac use
- Write documentation
The devproj 101
page has all the usual tracking things.
The project's index page is
A document evaluating password options
was the product of the second milestone.
to use the Informatics OpenVPN Service"
page has setting-up instructions and links to the necessary configuration files.
FinalReport.html,v 1.6 2010/05/27 13:46:05 gdmr Exp
Please contact us with any
comments or corrections.
Unless explicitly stated otherwise, all material is
copyright The University of Edinburgh