DevOps Dictionary

OpenVPN is an open-source virtual private network (VPN) solution that creates an encrypted tunnel between a client device and a VPN server, allowing traffic to traverse untrusted networks safely. It addresses the problem of exposing internal services and sensitive data when users or systems connect over the public internet by authenticating endpoints (often with certificates) and encrypting packets so intermediaries cannot read or tamper with them. At a high level, OpenVPN runs in user space and uses TLS for key exchange and identity verification, then encapsulates IP traffic inside an encrypted channel over UDP or TCP, making it suitable for remote access and site-to-site connectivity.

With OpenVPN, teams can securely reach private subnets and services with consistent access controls and auditability; without it, they often rely on publicly exposed endpoints or ad hoc port forwarding, increasing attack surface and operational risk. This gap exists because encryption and strong authentication shift trust from the network path to the endpoints and the cryptographic session.