OpenVPN in Ubuntu?
 

Ubuntu supports PPTP builtin, but OpenVPN installation instructions look formidable. Is there any easy way to install Ubuntu OpenVPN?

https://ubuntu.com/server/docs/service-openvpn

(I would have expected much better from them. PPTP is almost worse than nothing, or maybe it actually is worse.)

OpenVPN is doable, but as you see there are more steps than with Wireguard,

https://ubuntu.com/server/docs/wireg...n-introduction

https://www.digitalocean.com/communi...n-ubuntu-20-04

Many would also say that Wireguard is an improvement over OpenVPN. So I would recommend considering Wiregaurd instead of OpenVPN, if you have no pressing reasons to use OpenVPN.

There is also StrongSwan.

What are your general goals with a VPN? What kind of networks are you planning on connecting?

Can you put your understanding in general terms?

To spare Ubuntu, I think PPTP-only builtin is the same with Microsoft & I know it is in Android.

Esoteric is the reason why later alternatives are safer.

So, as I user I was convinced OpenVPN is significantly more secure. I seek it when available. I can use it installed in another distro but I am leaning more on Ubuntu now.

OpenVPN is more common than Wireguard & StrongSwan but good to know what's out there.

Perhaps I should look for a distro with it builtin, but common utilities should be available everywhere.

I basically need user-oriented XFCE & not too bloated.

I am connecting to networks supporting PPTP or OpenVPN.

Wireguard has a much, much smaller code base. Thus all even if all other factors were equal, that is an advantage because if code is not there it cannot break. There is even an implementation baked into OpenBSD base, which speaks a lot to the auditability and clarity. There are ports for Android and MacOS too.

Last I checked, Wireguard has defaulted to stronger algorithms. In the case of proprietary competition, last I checked, most did not even offer those stronger algorithms as an option.

On the usage side, setup is much simpler, as you can see from the guides.

The connection process is apparently simpler, thus faster and less error prone.

Apparently it transfers data faster than the others.

Don't take my word for it though. Unlike m$ products, it is allowed to evaluate and benchmark this software so you can find many reviews and guides out there.


PPTP, like other m$ services, insecure by design:

https://www.schneier.com/academic/ar..._of_mic_1.html
https://www.schneier.com/academic/ar...is_of_mic.html

Notice those posts are from the 1990s. L2TP is basically just a name change and just about as burdened with security hole.

There is a Ubuntu repository package called network-manager-openvpn I have installed, but I am not seeing the OpenVPN option in settings, still just PPTP.

two versions for Xubuntu:

network-manager-openvpn
network-manager-openvpn-gnome

I assumed the first is the right one.

Simpler is definitely a plus. It is always simpler to use PPTP than OpenVPN, but the extra work involved is logical.

You misunderstood. Wireguard is much simpler than OpenVPN.
PPTP is deprecated.