Topic: VPN client behind SME server 7.3

[viliev]

Hello,

I'm trying to setup VPN client to work trough SME server. Many of my users want to make VPN to theirs home VPN servers and to some other VPN servers, but for now I haven't any success to do it.

Is SME server 7.3 support VPN passtrough connection?

Thanks for your attention.

[imcintyre]

Yes it does. I connect to my work vpn server from home through my sme gateway-server at home. I use windows client.

Go into the server-manager, remote access, and set # of clients to zero.
Another thing that trips people up is that the ip range of your sme server should be different that the ip range of the network you are trying to vpn into. e.g. If you have 192.168.1.xxx at work, you will need to have 192.168.yyy.xxx, where yyy does not equal 1.

Other than that, it is simple.

[viliev]

Thanks for your prompt replay.

My scheme is:
(winXPpro-10.0.0.2/30)<-->(10.0.0.1/30-home_SME-real_IP)<-------(internet)-------->(real_IP-office_SME-192.168.0.1/24)
                                    (laptop somewhere in the net)<-------(internet)-------->

VPN from home to office doesn't work.
VPN from somewhere to office work perfect

any ideas where is the problem ?

[imcintyre]

I've always understood that to vpn from behind an sme server into an sme server you need to do a little more work, but I don't hold myself out as an expert because I've never done it.

I don't know the why or the gory details but I do know that you cannot could not set up an sme server to be able to accept vpn connections and then to vpn from behind that server into another network. If this has changed somebody please feel free to wade in.

My situation is that I have a laptop that I use at work and home. I have an sme server setup in gateway mode at home and other hardware at work.I need to work from home so I have to vpn into work and I like to vpn into home to listen to music etc. while I'm at work.

To get around this inconvenience I use the open-vpn contrib from "vip-ire" on my laptop and sme at home. It is my understanding that it is more secure than the regular vpn connection.

http://forums.contribs.org/index.php?topic=33043.0

[steve288]

Yes I thought it was not easy to do and am about to post a question regarding this. But a question if I may. When you say pass through connection do you mean that basically you turn vpn off on the linux server and some other computer on the network handles vpn connections ??
So it "passes through" the linux computer.

Im not sure what is meant by pass through vpn. I have looked it up on the net but not sure of the answers.

Regards

[viliev]

Hello, with VPN pass trough I mean that: I want to be able to make VPN to any other VPN server in the Internet trough SME masquerading.   

[janet]

viliev

Please read the FAQ and Howtos etc before asking questions, as many answers already exist

http://wiki.contribs.org/VPN_practical_tips

[imcintyre]

Mary;

thx, I've never come across that page before, but then it seems pretty new. Thx Ray Mitchell for the tips.

Ian