| SSL VPN is an important secure VPN. Compared with IPSec VPN, It is more flexible to construct a network, more convenient for user to operate, and its management cost is lower, so it is more competitive in commercial market.OpenVPN is a typical SSL VPN based on tunnel, which adopts SSL/TLS protocol to negotiate tunnel encryption keys, encapsulates tunnel data by simulating ESP protocol, encrypts tunnel data by utilizing OpenSSL Crypto Library, extends intranet by using TUN/TAP driver. OpenVPN supports IPv4/v6, Netware IPX, Appletalk, etc. And it can establish Intranet VPN, Extranet VPN and also can access VPN remotely. It is a full-featured VPN solution.OpenVPN is a free open-source software. Presently it has no management GUI and authoritative testing reports, so it has not been widely used. Because of these disadvantages of OpenVPN, an experimental research on graphical management and capability test of OpenVPN is put up in this paper.The paper first studies the principle of SSL/TLS protocol, ESP protocol and TUN/TAP driver, then clarifies the principle of OpenVPN by analyzing key negotiation, data encapsulation and data flow, and clearly points out the differences among OpenVPN, IPSec VPN, SSL VPN gateway.To improve OpenVPN's usability, the author develops a graphical management system based on Web. This system consists of five functional... |
PDF Full Text Request