OpenVPN via TCP or UDP
I read a question here about this topic but actually I am not super sure whether I understood it correctly. Unfortunately, because of my low reputation I can't comment there, so I decided to ask here directly.
I think I understood in general the difference between UDP and TCP. Running an VPN on which I transfer files would make me want to use TCP as I want the data to be correct and complete. However, I read this post here, https://security.stackexchange.com/a/27844/191246. From this I got the feeling that with VPN it is a bit like a box in a box. So the inner data transfer is performed with TCP all the time, no matter whether the outer box i.e. VPN is using UDP or TCP.
So that would mean unregarding the setup of the VPN, let it be UDP or TCP, I have the guarantee that my files are transfered correctly.
Is this right?
I want to replace my FritzBox VPN by an OpenVPN running on a Raspi and I really want to understand what implications are caused by certain decisions.
Thanks a lot, for your comments.
vpn tcp openvpn udp
migrated from security.stackexchange.com Dec 5 at 12:46
This question came from our site for information security professionals.
add a comment |
I read a question here about this topic but actually I am not super sure whether I understood it correctly. Unfortunately, because of my low reputation I can't comment there, so I decided to ask here directly.
I think I understood in general the difference between UDP and TCP. Running an VPN on which I transfer files would make me want to use TCP as I want the data to be correct and complete. However, I read this post here, https://security.stackexchange.com/a/27844/191246. From this I got the feeling that with VPN it is a bit like a box in a box. So the inner data transfer is performed with TCP all the time, no matter whether the outer box i.e. VPN is using UDP or TCP.
So that would mean unregarding the setup of the VPN, let it be UDP or TCP, I have the guarantee that my files are transfered correctly.
Is this right?
I want to replace my FritzBox VPN by an OpenVPN running on a Raspi and I really want to understand what implications are caused by certain decisions.
Thanks a lot, for your comments.
vpn tcp openvpn udp
migrated from security.stackexchange.com Dec 5 at 12:46
This question came from our site for information security professionals.
You might wish to read [Openvpn-users]UDP Tunnel and Reliability. The URL is sourceforge.net/p/openvpn/mailman/openvpn-users/…
– ssdhddinfected
Nov 13 at 20:05
1
So again I take the message that it doesn't really matter whether I take UDP or TCP regarding file consistency or integrity. Since the decision is only on the level of how the virtual network is set up and not on the actual file transfer.
– FordPrefect
Nov 13 at 21:29
I suggest that you confirm your understanding with either Gregory Sloop or Gert Doering. You need to first sign up to the mailing list.
– ssdhddinfected
Nov 14 at 5:23
add a comment |
I read a question here about this topic but actually I am not super sure whether I understood it correctly. Unfortunately, because of my low reputation I can't comment there, so I decided to ask here directly.
I think I understood in general the difference between UDP and TCP. Running an VPN on which I transfer files would make me want to use TCP as I want the data to be correct and complete. However, I read this post here, https://security.stackexchange.com/a/27844/191246. From this I got the feeling that with VPN it is a bit like a box in a box. So the inner data transfer is performed with TCP all the time, no matter whether the outer box i.e. VPN is using UDP or TCP.
So that would mean unregarding the setup of the VPN, let it be UDP or TCP, I have the guarantee that my files are transfered correctly.
Is this right?
I want to replace my FritzBox VPN by an OpenVPN running on a Raspi and I really want to understand what implications are caused by certain decisions.
Thanks a lot, for your comments.
vpn tcp openvpn udp
I read a question here about this topic but actually I am not super sure whether I understood it correctly. Unfortunately, because of my low reputation I can't comment there, so I decided to ask here directly.
I think I understood in general the difference between UDP and TCP. Running an VPN on which I transfer files would make me want to use TCP as I want the data to be correct and complete. However, I read this post here, https://security.stackexchange.com/a/27844/191246. From this I got the feeling that with VPN it is a bit like a box in a box. So the inner data transfer is performed with TCP all the time, no matter whether the outer box i.e. VPN is using UDP or TCP.
So that would mean unregarding the setup of the VPN, let it be UDP or TCP, I have the guarantee that my files are transfered correctly.
Is this right?
I want to replace my FritzBox VPN by an OpenVPN running on a Raspi and I really want to understand what implications are caused by certain decisions.
Thanks a lot, for your comments.
vpn tcp openvpn udp
vpn tcp openvpn udp
asked Nov 13 at 18:34
FordPrefect
migrated from security.stackexchange.com Dec 5 at 12:46
This question came from our site for information security professionals.
migrated from security.stackexchange.com Dec 5 at 12:46
This question came from our site for information security professionals.
You might wish to read [Openvpn-users]UDP Tunnel and Reliability. The URL is sourceforge.net/p/openvpn/mailman/openvpn-users/…
– ssdhddinfected
Nov 13 at 20:05
1
So again I take the message that it doesn't really matter whether I take UDP or TCP regarding file consistency or integrity. Since the decision is only on the level of how the virtual network is set up and not on the actual file transfer.
– FordPrefect
Nov 13 at 21:29
I suggest that you confirm your understanding with either Gregory Sloop or Gert Doering. You need to first sign up to the mailing list.
– ssdhddinfected
Nov 14 at 5:23
add a comment |
You might wish to read [Openvpn-users]UDP Tunnel and Reliability. The URL is sourceforge.net/p/openvpn/mailman/openvpn-users/…
– ssdhddinfected
Nov 13 at 20:05
1
So again I take the message that it doesn't really matter whether I take UDP or TCP regarding file consistency or integrity. Since the decision is only on the level of how the virtual network is set up and not on the actual file transfer.
– FordPrefect
Nov 13 at 21:29
I suggest that you confirm your understanding with either Gregory Sloop or Gert Doering. You need to first sign up to the mailing list.
– ssdhddinfected
Nov 14 at 5:23
You might wish to read [Openvpn-users]UDP Tunnel and Reliability. The URL is sourceforge.net/p/openvpn/mailman/openvpn-users/…
– ssdhddinfected
Nov 13 at 20:05
You might wish to read [Openvpn-users]UDP Tunnel and Reliability. The URL is sourceforge.net/p/openvpn/mailman/openvpn-users/…
– ssdhddinfected
Nov 13 at 20:05
1
1
So again I take the message that it doesn't really matter whether I take UDP or TCP regarding file consistency or integrity. Since the decision is only on the level of how the virtual network is set up and not on the actual file transfer.
– FordPrefect
Nov 13 at 21:29
So again I take the message that it doesn't really matter whether I take UDP or TCP regarding file consistency or integrity. Since the decision is only on the level of how the virtual network is set up and not on the actual file transfer.
– FordPrefect
Nov 13 at 21:29
I suggest that you confirm your understanding with either Gregory Sloop or Gert Doering. You need to first sign up to the mailing list.
– ssdhddinfected
Nov 14 at 5:23
I suggest that you confirm your understanding with either Gregory Sloop or Gert Doering. You need to first sign up to the mailing list.
– ssdhddinfected
Nov 14 at 5:23
add a comment |
1 Answer
1
active
oldest
votes
I got the feeling that with VPN it is a bit like a box in a box.
Good analogy.
The VPN provides a "virtual" network adapter that, as far as your computer is concerned, is just another link to the outside world.
So the inner data transfer is performed with TCP all the time
The inner data transfer is performed using whatever protocol the data transfer software uses: UDP, TCP, or something more exotic. That transfer travels over the virtual network just like it would travel over a physical network if the VPN didn't exist.
So that would mean [...] I have the guarantee that my files are transfered correctly. Is this right?
If your file-transfer software provides that guarantee over a physical network, then the same guarantee applies over a VPN.
answered Nov 13 at 18:48
mlp
1354
1
So lets say I use my laptop at home in my network and read and write files on a file server via samba. When I do the same via VPN it doesn't matter whether I use UDP or TCP I will have the same integrity in file transfer as I would have being at home.
– FordPrefect
Nov 13 at 19:26
@FordPrefect yes, that is correct: Samba transfers its packets over the underlying network and doesn't care whether it's an Ethernet LAN, a VPN, or an RFC 1149 link.
– mlp
Nov 14 at 16:55
Ok, I think I got it. It's really confusing because one can easily confuse the system of the VPN with the one of the service. Maybe I will ask at the mailing list as suggested in the comments above.
– FordPrefect
Nov 14 at 17:35
add a comment |
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "3"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1381002%2fopenvpn-via-tcp-or-udp%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
I got the feeling that with VPN it is a bit like a box in a box.
Good analogy.
The VPN provides a "virtual" network adapter that, as far as your computer is concerned, is just another link to the outside world.
So the inner data transfer is performed with TCP all the time
The inner data transfer is performed using whatever protocol the data transfer software uses: UDP, TCP, or something more exotic. That transfer travels over the virtual network just like it would travel over a physical network if the VPN didn't exist.
So that would mean [...] I have the guarantee that my files are transfered correctly. Is this right?
If your file-transfer software provides that guarantee over a physical network, then the same guarantee applies over a VPN.
answered Nov 13 at 18:48
mlp
1354
1
So lets say I use my laptop at home in my network and read and write files on a file server via samba. When I do the same via VPN it doesn't matter whether I use UDP or TCP I will have the same integrity in file transfer as I would have being at home.
– FordPrefect
Nov 13 at 19:26
@FordPrefect yes, that is correct: Samba transfers its packets over the underlying network and doesn't care whether it's an Ethernet LAN, a VPN, or an RFC 1149 link.
– mlp
Nov 14 at 16:55
Ok, I think I got it. It's really confusing because one can easily confuse the system of the VPN with the one of the service. Maybe I will ask at the mailing list as suggested in the comments above.
– FordPrefect
Nov 14 at 17:35
add a comment |
I got the feeling that with VPN it is a bit like a box in a box.
Good analogy.
The VPN provides a "virtual" network adapter that, as far as your computer is concerned, is just another link to the outside world.
So the inner data transfer is performed with TCP all the time
The inner data transfer is performed using whatever protocol the data transfer software uses: UDP, TCP, or something more exotic. That transfer travels over the virtual network just like it would travel over a physical network if the VPN didn't exist.
So that would mean [...] I have the guarantee that my files are transfered correctly. Is this right?
If your file-transfer software provides that guarantee over a physical network, then the same guarantee applies over a VPN.
answered Nov 13 at 18:48
mlp
1354
1
So lets say I use my laptop at home in my network and read and write files on a file server via samba. When I do the same via VPN it doesn't matter whether I use UDP or TCP I will have the same integrity in file transfer as I would have being at home.
– FordPrefect
Nov 13 at 19:26
@FordPrefect yes, that is correct: Samba transfers its packets over the underlying network and doesn't care whether it's an Ethernet LAN, a VPN, or an RFC 1149 link.
– mlp
Nov 14 at 16:55
Ok, I think I got it. It's really confusing because one can easily confuse the system of the VPN with the one of the service. Maybe I will ask at the mailing list as suggested in the comments above.
– FordPrefect
Nov 14 at 17:35
add a comment |
I got the feeling that with VPN it is a bit like a box in a box.
Good analogy.
The VPN provides a "virtual" network adapter that, as far as your computer is concerned, is just another link to the outside world.
So the inner data transfer is performed with TCP all the time
The inner data transfer is performed using whatever protocol the data transfer software uses: UDP, TCP, or something more exotic. That transfer travels over the virtual network just like it would travel over a physical network if the VPN didn't exist.
So that would mean [...] I have the guarantee that my files are transfered correctly. Is this right?
If your file-transfer software provides that guarantee over a physical network, then the same guarantee applies over a VPN.
answered Nov 13 at 18:48
mlp
1354
I got the feeling that with VPN it is a bit like a box in a box.
Good analogy.
The VPN provides a "virtual" network adapter that, as far as your computer is concerned, is just another link to the outside world.
So the inner data transfer is performed with TCP all the time
The inner data transfer is performed using whatever protocol the data transfer software uses: UDP, TCP, or something more exotic. That transfer travels over the virtual network just like it would travel over a physical network if the VPN didn't exist.
So that would mean [...] I have the guarantee that my files are transfered correctly. Is this right?
If your file-transfer software provides that guarantee over a physical network, then the same guarantee applies over a VPN.
answered Nov 13 at 18:48
mlp
1354
answered Nov 13 at 18:48
mlp
1354
answered Nov 13 at 18:48
mlp
1354
answered Nov 13 at 18:48
mlp
1354
1354
1
So lets say I use my laptop at home in my network and read and write files on a file server via samba. When I do the same via VPN it doesn't matter whether I use UDP or TCP I will have the same integrity in file transfer as I would have being at home.
– FordPrefect
Nov 13 at 19:26
@FordPrefect yes, that is correct: Samba transfers its packets over the underlying network and doesn't care whether it's an Ethernet LAN, a VPN, or an RFC 1149 link.
– mlp
Nov 14 at 16:55
Ok, I think I got it. It's really confusing because one can easily confuse the system of the VPN with the one of the service. Maybe I will ask at the mailing list as suggested in the comments above.
– FordPrefect
Nov 14 at 17:35
add a comment |
1
So lets say I use my laptop at home in my network and read and write files on a file server via samba. When I do the same via VPN it doesn't matter whether I use UDP or TCP I will have the same integrity in file transfer as I would have being at home.
– FordPrefect
Nov 13 at 19:26
@FordPrefect yes, that is correct: Samba transfers its packets over the underlying network and doesn't care whether it's an Ethernet LAN, a VPN, or an RFC 1149 link.
– mlp
Nov 14 at 16:55
Ok, I think I got it. It's really confusing because one can easily confuse the system of the VPN with the one of the service. Maybe I will ask at the mailing list as suggested in the comments above.
– FordPrefect
Nov 14 at 17:35
1
1
So lets say I use my laptop at home in my network and read and write files on a file server via samba. When I do the same via VPN it doesn't matter whether I use UDP or TCP I will have the same integrity in file transfer as I would have being at home.
– FordPrefect
Nov 13 at 19:26
So lets say I use my laptop at home in my network and read and write files on a file server via samba. When I do the same via VPN it doesn't matter whether I use UDP or TCP I will have the same integrity in file transfer as I would have being at home.
– FordPrefect
Nov 13 at 19:26
@FordPrefect yes, that is correct: Samba transfers its packets over the underlying network and doesn't care whether it's an Ethernet LAN, a VPN, or an RFC 1149 link.
– mlp
Nov 14 at 16:55
@FordPrefect yes, that is correct: Samba transfers its packets over the underlying network and doesn't care whether it's an Ethernet LAN, a VPN, or an RFC 1149 link.
– mlp
Nov 14 at 16:55
Ok, I think I got it. It's really confusing because one can easily confuse the system of the VPN with the one of the service. Maybe I will ask at the mailing list as suggested in the comments above.
– FordPrefect
Nov 14 at 17:35
Ok, I think I got it. It's really confusing because one can easily confuse the system of the VPN with the one of the service. Maybe I will ask at the mailing list as suggested in the comments above.
– FordPrefect
Nov 14 at 17:35
add a comment |
Thanks for contributing an answer to Super User!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Some of your past answers have not been well-received, and you're in danger of being blocked from answering.
Please pay close attention to the following guidance:
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1381002%2fopenvpn-via-tcp-or-udp%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
You might wish to read [Openvpn-users]UDP Tunnel and Reliability. The URL is sourceforge.net/p/openvpn/mailman/openvpn-users/…
– ssdhddinfected
Nov 13 at 20:05
1
So again I take the message that it doesn't really matter whether I take UDP or TCP regarding file consistency or integrity. Since the decision is only on the level of how the virtual network is set up and not on the actual file transfer.
– FordPrefect
Nov 13 at 21:29
I suggest that you confirm your understanding with either Gregory Sloop or Gert Doering. You need to first sign up to the mailing list.
– ssdhddinfected
Nov 14 at 5:23