{"id":13826216,"url":"https://github.com/essandess/macos-openvpn-server","last_synced_at":"2026-03-11T23:34:08.746Z","repository":{"id":25007464,"uuid":"28426539","full_name":"essandess/macos-openvpn-server","owner":"essandess","description":"macOS OpenVPN Server and Client Configuration (OpenVPN, Tunnelblick, PF)","archived":false,"fork":false,"pushed_at":"2022-11-23T15:19:08.000Z","size":520,"stargazers_count":222,"open_issues_count":0,"forks_count":53,"subscribers_count":13,"default_branch":"master","last_synced_at":"2026-01-24T15:14:31.676Z","etag":null,"topics":["ad-blocker","macos","privacy","privacy-enhancing-technologies","proxy","proxy-server","vpn","vpn-server"],"latest_commit_sha":null,"homepage":"","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/essandess.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2014-12-24T00:34:27.000Z","updated_at":"2025-12-04T22:23:23.000Z","dependencies_parsed_at":"2023-01-14T01:58:18.208Z","dependency_job_id":null,"html_url":"https://github.com/essandess/macos-openvpn-server","commit_stats":null,"previous_names":[],"tags_count":5,"template":false,"template_full_name":null,"purl":"pkg:github/essandess/macos-openvpn-server","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/essandess%2Fmacos-openvpn-server","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/essandess%2Fmacos-openvpn-server/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/essandess%2Fmacos-openvpn-server/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/essandess%2Fmacos-openvpn-server/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/essandess","download_url":"https://codeload.github.com/essandess/macos-openvpn-server/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/essandess%2Fmacos-openvpn-server/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":30407018,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-03-11T22:36:59.286Z","status":"ssl_error","status_checked_at":"2026-03-11T22:36:57.544Z","response_time":84,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ad-blocker","macos","privacy","privacy-enhancing-technologies","proxy","proxy-server","vpn","vpn-server"],"created_at":"2024-08-04T09:01:34.010Z","updated_at":"2026-03-11T23:34:08.704Z","avatar_url":"https://github.com/essandess.png","language":"Shell","funding_links":[],"categories":["\u003ca id=\"d62a971d37c69db9f3b9187318c3921a\"\u003e\u003c/a\u003e工具"],"sub_categories":["\u003ca id=\"8ea8f890cf767c3801b5e7951fca3570\"\u003e\u003c/a\u003e公网访问局域网"],"readme":"macos-openvpn-server\n==================\n\n# macOS OpenVPN Server and Client Configuration\n\nThis repo describes how to build an OpenVPN VPN server on macOS using pfctl and [Tunnelblick](../../../../Tunnelblick/Tunnelblick).\n\nThis configuration provides a TLS-based VPN server using EC ed25519 certificates and UDP port 443, accessible by any OpenVPN client, especially iOS with the OpenVPN app.\n\n![OpenVPN iPad](images/OpenVPN_iPad.PNG)\n\n## Installation and Configuration Notes\n* Configuration for `openvpn` version 2.5 and [easy-rsa](../../../../OpenVPN/easy-rsa) version 3\n* Presumes latest macOS versions that use editable `/etc/sysctl.conf` to set:\n\u003e ```\n\u003e net.inet.ip.forwarding=1\n\u003e net.inet6.ip6.forwarding=1\n\u003e ```\nThis is known to work for macOS 11+. See previous versions of this\nrepo for a `launchctl`-based approach\n* Uses Edwards curve\n[ed25519](https://en.wikipedia.org/wiki/Curve25519) EC-based PKI\nfor very fast VPN connections with 128-bit security\n\n## VPN Configuration Advantages\n\nThis OpenVPN configuration provides the following advantages:\n\n* Secure VPN networking for all mobile clients\n* Secure, certificate-based VPN\n* PF-based [firewall security](../../../osxfortress) on the server\n* Privatizing [Proxy Configuration](../../../osxfortress) for all mobile client devices\n    * Mobile device networking through PF firewall security\n    * Tracker blocking\n    * Ad blocking\n    * Malware blocking\n\n## [Tunnelblick](../../../../Tunnelblick/Tunnelblick) Configuration\n\nConfigure [Tunnelblick](../../../../Tunnelblick/Tunnelblick) settings so that the server connection persists over macOS Fast User Switching. Failure to do this is observed to cause routing problems beyond OpenVPN server accessibility. Use the recommended standard and advanced settings:\n\n| [Tunnelblick](../../../../Tunnelblick/Tunnelblick) Settings |  Advanced… |\n:------------------------------------------------------------:|:-------------------------:\n![Tunnelblick Settings](images/Tunnelblick%20Settings.png)|![Tunnelblick Advanced Settings](images/Tunnelblick%20Advanced%20Settings.png)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fessandess%2Fmacos-openvpn-server","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fessandess%2Fmacos-openvpn-server","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fessandess%2Fmacos-openvpn-server/lists"}