On Wed, 23 Nov 2005 20:57:00 +0000, Tauno Voipio wrote:
....
> There are many different ways of setting up OpenVPN.
> My recommendation is:
> - tunneling at network layer (use tun0, not tap0),

ok i will be sure to go with tun0

> - a separate RFC1918 subnet for the VPN (e.g. 192.168.x.y)

Not sure what that is, but my router has been set up as 192.168.1.1 as
gateway, 255.255.255.0 subnet mask, and thus my main PC is 192.168.1.100
-- so I hope that is ok to go with for now? (see below)

> - UDP transport on the standard port (1194),

yes I will go with UPD and 1194

> - SSL encryption and key exchange
...

Ok I got openvpn installed using urpmi, it was quite easy, now for the
hard part, configuring it. It looks do-able though, I am actually rather
excited to get it installed!

Can I still leave my home cable router home PC LAN setting as
192.168.1.1 as the local address (gateway) with 255.255.255.0 subnet mask
(so that my main PC is 192.169.1.100, etc)-- or do I need to change my
router LAN network to something else? In the openVPN documentation
on setting it up, it talks about "Numbering Private subnets", where
10.0.0.0 / 10.255.255.255.255 (10/8 prefix, whatever that means) is
reserved block of IP address space for private interent protocols. The doc
says "The best solution is to avoid using 10.0.0.0/24 or 192.168.0.0/24
LAB network addresses. Instead, use something that has a lower probability
of being used in a Wifi cafe, etc. The best candidates are subnets in the
middle of the vast 10.0.0.0/8 netblcok (for example 10.66.77.0/24)" I
want to have my router set up correctly first, then I think I will be able
to configure the config files with a little help.