This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
tutorials:vpn [2012/01/08 23:06] – Fix links memnon | tutorials:vpn [2012/05/02 18:10] (current) – Import latest additions from sdf. memnon | ||
---|---|---|---|
Line 11: | Line 11: | ||
* [[# | * [[# | ||
* [[#The Wrap-up]] | * [[#The Wrap-up]] | ||
+ | * [[# | ||
+ | * [[#Getting the OpenVPN software]] | ||
+ | * [[#Setting it up]] | ||
===== Overview ===== | ===== Overview ===== | ||
Line 62: | Line 65: | ||
- Make sure PPP and PPTP are installed. The can be accomplished in Debian or Ubuntu by entering ' | - Make sure PPP and PPTP are installed. The can be accomplished in Debian or Ubuntu by entering ' | ||
- | - Create a file named sdfpptp in / | + | - Create a file named sdfpptp in / |
remotename sdfpptp | remotename sdfpptp | ||
linkname sdfpptp | linkname sdfpptp | ||
Line 81: | Line 84: | ||
bsdcomp 9,15 | bsdcomp 9,15 | ||
deflate 9,15 | deflate 9,15 | ||
- | idle 0 | + | idle 0 </ |
- Save the file. | - Save the file. | ||
- Edit / | - Edit / | ||
Line 89: | Line 92: | ||
Alternatively to steps 5 and 6, you might use a wrapper script like this:\\ | Alternatively to steps 5 and 6, you might use a wrapper script like this:\\ | ||
+ | <code bash> | ||
#!/bin/bash | #!/bin/bash | ||
SDFVPNHOST=**// | SDFVPNHOST=**// | ||
Line 100: | Line 103: | ||
ip route del $SDFVPNHOST via $VIA dev $DEV | ip route del $SDFVPNHOST via $VIA dev $DEV | ||
ip route del $SDFVPNHOST via $VIA dev $DEV table sdftun | ip route del $SDFVPNHOST via $VIA dev $DEV table sdftun | ||
+ | </ | ||
This automatically detects the default gateway and adds appropriate routes, starts the VPN and deletes the routes after VPN has been stopped. If you do not use a custom routing table dedicated to the SDF VPN you should delete the lines ending in "table sdftun" | This automatically detects the default gateway and adds appropriate routes, starts the VPN and deletes the routes after VPN has been stopped. If you do not use a custom routing table dedicated to the SDF VPN you should delete the lines ending in "table sdftun" | ||
Line 119: | Line 123: | ||
{{tutorials/ | {{tutorials/ | ||
- | Click on the **Add** button, and choose **Point-to-Point Tunneling Protocol (PPTP)**, then click **Create**. Fill out the **User name**, **Password** and **Gateway** fields with appropriate values ([[#setup|from when you ran //setvpn//]]): | + | Click on the **Add** button, and choose **Point-to-Point Tunneling Protocol (PPTP)**, then click **Create**. Fill out the **User name**, **Password** and **Gateway** fields with appropriate values ([[#Setting it up|from when you ran setvpn]]): |
{{tutorials/ | {{tutorials/ | ||
Line 138: | Line 142: | ||
* Install mpd4 from ports or packages. | * Install mpd4 from ports or packages. | ||
- | * Add the following section to your / | + | * Add the following section to your / |
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | set ipcp yes req-pri-dns req-sec-dns | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | </ | ||
* You will have to replace three (3) things in this config: | * You will have to replace three (3) things in this config: | ||
- Your USERNAME | - Your USERNAME | ||
- Your PASSWORD | - Your PASSWORD | ||
- The local address of SDF's VPN host. This can be found in /etc/hosts on SDF. The local IP will start with 10.0.0, but have the same last octet as the public IP. ' | - The local address of SDF's VPN host. This can be found in /etc/hosts on SDF. The local IP will start with 10.0.0, but have the same last octet as the public IP. ' | ||
- | * Add this in your / | + | * Add this in your / |
+ | | ||
+ | | ||
+ | | ||
+ | | ||
+ | | ||
* You will have to replace one (1) thing in this config: | * You will have to replace one (1) thing in this config: | ||
- The public address of SDF's VPN host. You can get this by running setvpn at the shell. | - The public address of SDF's VPN host. You can get this by running setvpn at the shell. | ||
Line 188: | Line 229: | ||
Enjoy! | Enjoy! | ||
+ | |||
+ | ===== Connecting to the SDF VPN with OpenVPN (USA/EU) ===== | ||
+ | |||
+ | === Overview === | ||
+ | |||
+ | The Virtual Private Network (VPN) provided by SDF has a number of uses. The most beneficial of that is to allow confidential communication over a public network. Basically, the SDF VPN will allow you (once routing is enabled) to communicate securely over an insecure connection such as a public Wireless Fidelity (Wi-Fi) network. | ||
+ | |||
+ | The major benefit of this over SSH forwarding/ | ||
+ | |||
+ | === Getting the OpenVPN software === | ||
+ | |||
+ | * [[http:// | ||
+ | * [[http:// | ||
+ | |||
+ | === Setting it up === | ||
+ | |||
+ | You will receive your OpenVPN certificate via SDF internal email for both the USA and EU server. You may use either server when it suits you. The server addresses are: | ||
+ | |||
+ | * openvpn.sdf.org (Tukwila, Washington USA) | ||
+ | * openvpn.sdfeu.org (Falkenstein, | ||
+ | |||
+ | $Id: VPN.html,v 1.26 2011/07/17 17:57:14 smj Exp $ |