OpenVPN for Palm Pre
Introduction
OpenVPN enables you to build a secure virtual private network (VPN) connection from your Palm device to an available OpenVPN server, over an encrypted TLS connection. For encryption, it uses the libraries of the OpenSSL program. On the transport layer, it can use TCP or UDP. The secure connection, or "tunnel", between client and server is created using virtual network devices, using either the TUN/TAP kernel drivers. With optware, the openvpn-client is easily installable on your palm device.
OpenVPN-client installation
To setup a connection to your OpenVPN server, you need the appropriate kernel module (tun.ko) and build a client-configuration depending and what type of connection you want to create (bridged or routed). The optware OpenVPN ipkg is a clean installation as the clipboard below proves. The Palm Pre/Pixi Linux OS is compiled with the /dev/tun driver built in, so you can ignore the module dependency warning. There is a project to create a GUI for the pre [1].
note: oinstall is alias oinstall="sudo ipkg-opt install"
┌─(box@castle)-(09:28:44)-> └─(~)--> $ oinstall openvpn Installing openvpn (2.1_rc15-1) to root... Downloading http://ipkg.nslu2-linux.org/feeds/optware/cs08q1armel/cross/unstable/openvpn_2.1_rc15-1_arm.ipk openvpn: unsatisfied recommendation for kernel-module-tun Installing lzo (1.08-2) to root... Downloading http://ipkg.nslu2-linux.org/feeds/optware/cs08q1armel/cross/unstable/lzo_1.08-2_arm.ipk Configuring lzo Configuring openvpn Successfully terminated.
OpenVPN IRC channel
The OpenVPN IRC channel ##OpenVPN exists on the same Freenode server #WebOS-Internals is located on. Please stop by either channel with questions after visiting [2]
OpenVPN client configuration
┌─(root@castle)-(10:17:05)-> └─(/opt/etc/openvpn)--> # unzip palmpre.zip Archive: palmpre.zip creating: palmpre/ inflating: palmpre/ca.crt inflating: palmpre/palmpre.key inflating: palmpre/palmpre.crt inflating: palmpre/palmpre.conf inflating: palmpre/dh2048.pem inflating: palmpre/palmpre.ovpn ┌─(root@castle)-(10:19:33)-> └─(/opt/etc/openvpn)--> # openvpn --config /opt/etc/openvpn/palmpre/palmpre.ovpn >>/dev/null& (...While pinging google, dropped wifi and monitored via SSH over Bluetooth PAN) 64 bytes from 74.125.67.100: seq=5 ttl=52 time=46.505 ms 64 bytes from 74.125.67.100: seq=6 ttl=52 time=45.603 ms 64 bytes from 74.125.67.100: seq=7 ttl=52 time=49.132 ms 64 bytes from 74.125.67.100: seq=8 ttl=52 time=101.013 ms 64 bytes from 74.125.67.100: seq=9 ttl=52 time=1556.213 ms <-- cutover wifi to evdo 64 bytes from 74.125.67.100: seq=10 ttl=52 time=561.371 ms 64 bytes from 74.125.67.100: seq=11 ttl=52 time=54.932 ms 64 bytes from 74.125.67.100: seq=12 ttl=50 time=109.436 ms 64 bytes from 74.125.67.100: seq=13 ttl=50 time=105.896 ms 64 bytes from 74.125.67.100: seq=14 ttl=50 time=104.523 ms ┌─(root@castle)-(10:33:54)-> └─(/opt/etc/openvpn/palmpre)--> # ping 192.218.1.10 PING 192.218.1.10 (192.218.1.10): 56 data bytes 64 bytes from 192.218.1.10: seq=0 ttl=42 time=456.665 ms 64 bytes from 192.218.1.10: seq=1 ttl=42 time=260.773 ms 64 bytes from 192.218.1.10: seq=2 ttl=42 time=268.189 ms ┌─(root@castle)-(10:35:13)-> └─(/opt/etc/openvpn/palmpre)--> # ping 192.218.0.1 PING 192.218.0.1 (192.218.0.1): 56 data bytes 64 bytes from 192.218.0.1: seq=0 ttl=64 time=259.552 ms 64 bytes from 192.218.0.1: seq=1 ttl=64 time=114.898 ms 64 bytes from 192.218.0.1: seq=2 ttl=64 time=118.958 ms ┌─(root@castle)-(10:35:40)-> └─(/opt/etc/openvpn/palmpre)--> # ping 192.218.0.218 PING 192.218.0.218 (192.218.0.218): 56 data bytes 64 bytes from 192.218.0.218: seq=0 ttl=64 time=502.137 ms 64 bytes from 192.218.0.218: seq=1 ttl=64 time=182.556 ms 64 bytes from 192.218.0.218: seq=2 ttl=64 time=123.016 ms