OpenVPN via TCP or UDP












0














I read a question here about this topic but actually I am not super sure whether I understood it correctly. Unfortunately, because of my low reputation I can't comment there, so I decided to ask here directly.



I think I understood in general the difference between UDP and TCP. Running an VPN on which I transfer files would make me want to use TCP as I want the data to be correct and complete. However, I read this post here, https://security.stackexchange.com/a/27844/191246. From this I got the feeling that with VPN it is a bit like a box in a box. So the inner data transfer is performed with TCP all the time, no matter whether the outer box i.e. VPN is using UDP or TCP.



So that would mean unregarding the setup of the VPN, let it be UDP or TCP, I have the guarantee that my files are transfered correctly.
Is this right?



I want to replace my FritzBox VPN by an OpenVPN running on a Raspi and I really want to understand what implications are caused by certain decisions.



Thanks a lot, for your comments.










share|improve this question













migrated from security.stackexchange.com Dec 5 at 12:46


This question came from our site for information security professionals.















  • You might wish to read [Openvpn-users]UDP Tunnel and Reliability. The URL is sourceforge.net/p/openvpn/mailman/openvpn-users/…
    – ssdhddinfected
    Nov 13 at 20:05






  • 1




    So again I take the message that it doesn't really matter whether I take UDP or TCP regarding file consistency or integrity. Since the decision is only on the level of how the virtual network is set up and not on the actual file transfer.
    – FordPrefect
    Nov 13 at 21:29










  • I suggest that you confirm your understanding with either Gregory Sloop or Gert Doering. You need to first sign up to the mailing list.
    – ssdhddinfected
    Nov 14 at 5:23
















0














I read a question here about this topic but actually I am not super sure whether I understood it correctly. Unfortunately, because of my low reputation I can't comment there, so I decided to ask here directly.



I think I understood in general the difference between UDP and TCP. Running an VPN on which I transfer files would make me want to use TCP as I want the data to be correct and complete. However, I read this post here, https://security.stackexchange.com/a/27844/191246. From this I got the feeling that with VPN it is a bit like a box in a box. So the inner data transfer is performed with TCP all the time, no matter whether the outer box i.e. VPN is using UDP or TCP.



So that would mean unregarding the setup of the VPN, let it be UDP or TCP, I have the guarantee that my files are transfered correctly.
Is this right?



I want to replace my FritzBox VPN by an OpenVPN running on a Raspi and I really want to understand what implications are caused by certain decisions.



Thanks a lot, for your comments.










share|improve this question













migrated from security.stackexchange.com Dec 5 at 12:46


This question came from our site for information security professionals.















  • You might wish to read [Openvpn-users]UDP Tunnel and Reliability. The URL is sourceforge.net/p/openvpn/mailman/openvpn-users/…
    – ssdhddinfected
    Nov 13 at 20:05






  • 1




    So again I take the message that it doesn't really matter whether I take UDP or TCP regarding file consistency or integrity. Since the decision is only on the level of how the virtual network is set up and not on the actual file transfer.
    – FordPrefect
    Nov 13 at 21:29










  • I suggest that you confirm your understanding with either Gregory Sloop or Gert Doering. You need to first sign up to the mailing list.
    – ssdhddinfected
    Nov 14 at 5:23














0












0








0







I read a question here about this topic but actually I am not super sure whether I understood it correctly. Unfortunately, because of my low reputation I can't comment there, so I decided to ask here directly.



I think I understood in general the difference between UDP and TCP. Running an VPN on which I transfer files would make me want to use TCP as I want the data to be correct and complete. However, I read this post here, https://security.stackexchange.com/a/27844/191246. From this I got the feeling that with VPN it is a bit like a box in a box. So the inner data transfer is performed with TCP all the time, no matter whether the outer box i.e. VPN is using UDP or TCP.



So that would mean unregarding the setup of the VPN, let it be UDP or TCP, I have the guarantee that my files are transfered correctly.
Is this right?



I want to replace my FritzBox VPN by an OpenVPN running on a Raspi and I really want to understand what implications are caused by certain decisions.



Thanks a lot, for your comments.










share|improve this question













I read a question here about this topic but actually I am not super sure whether I understood it correctly. Unfortunately, because of my low reputation I can't comment there, so I decided to ask here directly.



I think I understood in general the difference between UDP and TCP. Running an VPN on which I transfer files would make me want to use TCP as I want the data to be correct and complete. However, I read this post here, https://security.stackexchange.com/a/27844/191246. From this I got the feeling that with VPN it is a bit like a box in a box. So the inner data transfer is performed with TCP all the time, no matter whether the outer box i.e. VPN is using UDP or TCP.



So that would mean unregarding the setup of the VPN, let it be UDP or TCP, I have the guarantee that my files are transfered correctly.
Is this right?



I want to replace my FritzBox VPN by an OpenVPN running on a Raspi and I really want to understand what implications are caused by certain decisions.



Thanks a lot, for your comments.







vpn tcp openvpn udp






share|improve this question













share|improve this question











share|improve this question




share|improve this question










asked Nov 13 at 18:34







FordPrefect











migrated from security.stackexchange.com Dec 5 at 12:46


This question came from our site for information security professionals.






migrated from security.stackexchange.com Dec 5 at 12:46


This question came from our site for information security professionals.














  • You might wish to read [Openvpn-users]UDP Tunnel and Reliability. The URL is sourceforge.net/p/openvpn/mailman/openvpn-users/…
    – ssdhddinfected
    Nov 13 at 20:05






  • 1




    So again I take the message that it doesn't really matter whether I take UDP or TCP regarding file consistency or integrity. Since the decision is only on the level of how the virtual network is set up and not on the actual file transfer.
    – FordPrefect
    Nov 13 at 21:29










  • I suggest that you confirm your understanding with either Gregory Sloop or Gert Doering. You need to first sign up to the mailing list.
    – ssdhddinfected
    Nov 14 at 5:23


















  • You might wish to read [Openvpn-users]UDP Tunnel and Reliability. The URL is sourceforge.net/p/openvpn/mailman/openvpn-users/…
    – ssdhddinfected
    Nov 13 at 20:05






  • 1




    So again I take the message that it doesn't really matter whether I take UDP or TCP regarding file consistency or integrity. Since the decision is only on the level of how the virtual network is set up and not on the actual file transfer.
    – FordPrefect
    Nov 13 at 21:29










  • I suggest that you confirm your understanding with either Gregory Sloop or Gert Doering. You need to first sign up to the mailing list.
    – ssdhddinfected
    Nov 14 at 5:23
















You might wish to read [Openvpn-users]UDP Tunnel and Reliability. The URL is sourceforge.net/p/openvpn/mailman/openvpn-users/…
– ssdhddinfected
Nov 13 at 20:05




You might wish to read [Openvpn-users]UDP Tunnel and Reliability. The URL is sourceforge.net/p/openvpn/mailman/openvpn-users/…
– ssdhddinfected
Nov 13 at 20:05




1




1




So again I take the message that it doesn't really matter whether I take UDP or TCP regarding file consistency or integrity. Since the decision is only on the level of how the virtual network is set up and not on the actual file transfer.
– FordPrefect
Nov 13 at 21:29




So again I take the message that it doesn't really matter whether I take UDP or TCP regarding file consistency or integrity. Since the decision is only on the level of how the virtual network is set up and not on the actual file transfer.
– FordPrefect
Nov 13 at 21:29












I suggest that you confirm your understanding with either Gregory Sloop or Gert Doering. You need to first sign up to the mailing list.
– ssdhddinfected
Nov 14 at 5:23




I suggest that you confirm your understanding with either Gregory Sloop or Gert Doering. You need to first sign up to the mailing list.
– ssdhddinfected
Nov 14 at 5:23










1 Answer
1






active

oldest

votes


















2















I got the feeling that with VPN it is a bit like a box in a box.




Good analogy.
The VPN provides a "virtual" network adapter that, as far as your computer is concerned, is just another link to the outside world.




So the inner data transfer is performed with TCP all the time




The inner data transfer is performed using whatever protocol the data transfer software uses: UDP, TCP, or something more exotic. That transfer travels over the virtual network just like it would travel over a physical network if the VPN didn't exist.




So that would mean [...] I have the guarantee that my files are transfered correctly. Is this right?




If your file-transfer software provides that guarantee over a physical network, then the same guarantee applies over a VPN.






share|improve this answer

















  • 1




    So lets say I use my laptop at home in my network and read and write files on a file server via samba. When I do the same via VPN it doesn't matter whether I use UDP or TCP I will have the same integrity in file transfer as I would have being at home.
    – FordPrefect
    Nov 13 at 19:26










  • @FordPrefect yes, that is correct: Samba transfers its packets over the underlying network and doesn't care whether it's an Ethernet LAN, a VPN, or an RFC 1149 link.
    – mlp
    Nov 14 at 16:55










  • Ok, I think I got it. It's really confusing because one can easily confuse the system of the VPN with the one of the service. Maybe I will ask at the mailing list as suggested in the comments above.
    – FordPrefect
    Nov 14 at 17:35











Your Answer








StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "3"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});














draft saved

draft discarded


















StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1381002%2fopenvpn-via-tcp-or-udp%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown
























1 Answer
1






active

oldest

votes








1 Answer
1






active

oldest

votes









active

oldest

votes






active

oldest

votes









2















I got the feeling that with VPN it is a bit like a box in a box.




Good analogy.
The VPN provides a "virtual" network adapter that, as far as your computer is concerned, is just another link to the outside world.




So the inner data transfer is performed with TCP all the time




The inner data transfer is performed using whatever protocol the data transfer software uses: UDP, TCP, or something more exotic. That transfer travels over the virtual network just like it would travel over a physical network if the VPN didn't exist.




So that would mean [...] I have the guarantee that my files are transfered correctly. Is this right?




If your file-transfer software provides that guarantee over a physical network, then the same guarantee applies over a VPN.






share|improve this answer

















  • 1




    So lets say I use my laptop at home in my network and read and write files on a file server via samba. When I do the same via VPN it doesn't matter whether I use UDP or TCP I will have the same integrity in file transfer as I would have being at home.
    – FordPrefect
    Nov 13 at 19:26










  • @FordPrefect yes, that is correct: Samba transfers its packets over the underlying network and doesn't care whether it's an Ethernet LAN, a VPN, or an RFC 1149 link.
    – mlp
    Nov 14 at 16:55










  • Ok, I think I got it. It's really confusing because one can easily confuse the system of the VPN with the one of the service. Maybe I will ask at the mailing list as suggested in the comments above.
    – FordPrefect
    Nov 14 at 17:35
















2















I got the feeling that with VPN it is a bit like a box in a box.




Good analogy.
The VPN provides a "virtual" network adapter that, as far as your computer is concerned, is just another link to the outside world.




So the inner data transfer is performed with TCP all the time




The inner data transfer is performed using whatever protocol the data transfer software uses: UDP, TCP, or something more exotic. That transfer travels over the virtual network just like it would travel over a physical network if the VPN didn't exist.




So that would mean [...] I have the guarantee that my files are transfered correctly. Is this right?




If your file-transfer software provides that guarantee over a physical network, then the same guarantee applies over a VPN.






share|improve this answer

















  • 1




    So lets say I use my laptop at home in my network and read and write files on a file server via samba. When I do the same via VPN it doesn't matter whether I use UDP or TCP I will have the same integrity in file transfer as I would have being at home.
    – FordPrefect
    Nov 13 at 19:26










  • @FordPrefect yes, that is correct: Samba transfers its packets over the underlying network and doesn't care whether it's an Ethernet LAN, a VPN, or an RFC 1149 link.
    – mlp
    Nov 14 at 16:55










  • Ok, I think I got it. It's really confusing because one can easily confuse the system of the VPN with the one of the service. Maybe I will ask at the mailing list as suggested in the comments above.
    – FordPrefect
    Nov 14 at 17:35














2












2








2







I got the feeling that with VPN it is a bit like a box in a box.




Good analogy.
The VPN provides a "virtual" network adapter that, as far as your computer is concerned, is just another link to the outside world.




So the inner data transfer is performed with TCP all the time




The inner data transfer is performed using whatever protocol the data transfer software uses: UDP, TCP, or something more exotic. That transfer travels over the virtual network just like it would travel over a physical network if the VPN didn't exist.




So that would mean [...] I have the guarantee that my files are transfered correctly. Is this right?




If your file-transfer software provides that guarantee over a physical network, then the same guarantee applies over a VPN.






share|improve this answer













I got the feeling that with VPN it is a bit like a box in a box.




Good analogy.
The VPN provides a "virtual" network adapter that, as far as your computer is concerned, is just another link to the outside world.




So the inner data transfer is performed with TCP all the time




The inner data transfer is performed using whatever protocol the data transfer software uses: UDP, TCP, or something more exotic. That transfer travels over the virtual network just like it would travel over a physical network if the VPN didn't exist.




So that would mean [...] I have the guarantee that my files are transfered correctly. Is this right?




If your file-transfer software provides that guarantee over a physical network, then the same guarantee applies over a VPN.







share|improve this answer












share|improve this answer



share|improve this answer










answered Nov 13 at 18:48









mlp

1354




1354








  • 1




    So lets say I use my laptop at home in my network and read and write files on a file server via samba. When I do the same via VPN it doesn't matter whether I use UDP or TCP I will have the same integrity in file transfer as I would have being at home.
    – FordPrefect
    Nov 13 at 19:26










  • @FordPrefect yes, that is correct: Samba transfers its packets over the underlying network and doesn't care whether it's an Ethernet LAN, a VPN, or an RFC 1149 link.
    – mlp
    Nov 14 at 16:55










  • Ok, I think I got it. It's really confusing because one can easily confuse the system of the VPN with the one of the service. Maybe I will ask at the mailing list as suggested in the comments above.
    – FordPrefect
    Nov 14 at 17:35














  • 1




    So lets say I use my laptop at home in my network and read and write files on a file server via samba. When I do the same via VPN it doesn't matter whether I use UDP or TCP I will have the same integrity in file transfer as I would have being at home.
    – FordPrefect
    Nov 13 at 19:26










  • @FordPrefect yes, that is correct: Samba transfers its packets over the underlying network and doesn't care whether it's an Ethernet LAN, a VPN, or an RFC 1149 link.
    – mlp
    Nov 14 at 16:55










  • Ok, I think I got it. It's really confusing because one can easily confuse the system of the VPN with the one of the service. Maybe I will ask at the mailing list as suggested in the comments above.
    – FordPrefect
    Nov 14 at 17:35








1




1




So lets say I use my laptop at home in my network and read and write files on a file server via samba. When I do the same via VPN it doesn't matter whether I use UDP or TCP I will have the same integrity in file transfer as I would have being at home.
– FordPrefect
Nov 13 at 19:26




So lets say I use my laptop at home in my network and read and write files on a file server via samba. When I do the same via VPN it doesn't matter whether I use UDP or TCP I will have the same integrity in file transfer as I would have being at home.
– FordPrefect
Nov 13 at 19:26












@FordPrefect yes, that is correct: Samba transfers its packets over the underlying network and doesn't care whether it's an Ethernet LAN, a VPN, or an RFC 1149 link.
– mlp
Nov 14 at 16:55




@FordPrefect yes, that is correct: Samba transfers its packets over the underlying network and doesn't care whether it's an Ethernet LAN, a VPN, or an RFC 1149 link.
– mlp
Nov 14 at 16:55












Ok, I think I got it. It's really confusing because one can easily confuse the system of the VPN with the one of the service. Maybe I will ask at the mailing list as suggested in the comments above.
– FordPrefect
Nov 14 at 17:35




Ok, I think I got it. It's really confusing because one can easily confuse the system of the VPN with the one of the service. Maybe I will ask at the mailing list as suggested in the comments above.
– FordPrefect
Nov 14 at 17:35


















draft saved

draft discarded




















































Thanks for contributing an answer to Super User!


  • Please be sure to answer the question. Provide details and share your research!

But avoid



  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.


To learn more, see our tips on writing great answers.





Some of your past answers have not been well-received, and you're in danger of being blocked from answering.


Please pay close attention to the following guidance:


  • Please be sure to answer the question. Provide details and share your research!

But avoid



  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.


To learn more, see our tips on writing great answers.




draft saved


draft discarded














StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1381002%2fopenvpn-via-tcp-or-udp%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown







Popular posts from this blog

"Incorrect syntax near the keyword 'ON'. (on update cascade, on delete cascade,)

Alcedinidae

Origin of the phrase “under your belt”?