OpenVPN has announced the release of version 2.7.0, three years after the publication of branch 2.6. OpenVPN is a package that allows users to create virtual private networks, enabling encrypted connections between client machines or setting up a centralized VPN server for multiple clients to operate simultaneously. The OpenVPN code is distributed under the GPLv2 license, and binary packages are available for Debian, Ubuntu, CentOS, RHEL, and Windows.
The main innovations in OpenVPN 2.7.0 include:
- VPN servers can now open several sockets to receive connections simultaneously, such as via UDP and TCP or on different network ports.
- The transition to the new version includes the integration of the DCO module in the main Linux 6.16 kernel, now supplied under the name “ovpn,” replacing the old ovpn-dco module. This module optimizes operations by transferring encryption, packet processing, and communication channel management to the Linux kernel side, eliminating overhead, optimizing work, and speeding up data transfers.
- Updates in the Windows version include the activation of the block-local flag in WFP filters, the generation of additional network interfaces as needed, enabling automatic services launch under an unprivileged user, and utilizing NRPT for DNS settings, among other features.
- Introducing a new key and packet format “epoch,” which automatically updates keys, has 64-bit packet identifiers, and uses XOR operation when forming the initialization vector.
- Support for lwipovpn, an emulator of tun/tap network interfaces in user space based on the lwIP TCP/IP stack, allowing emulation of a VPN client for testing and debugging OpenVPN on the same system.
- The ability to update certain client settings by sending server control messages PUSH_UPDATE.
- An option added to the OpenVPN client for Linux, BSD, and macOS “–dns-updown” to run a script for applying DNS settings sent by the server, supporting configuration via /etc/resolv.conf, systemd, or resolveconf.
/Reports, release notes, official announcements.