Topic: Browse to routers ??

[steve288]

I want put in  an SME server to filter web sites etc behind a DSL router. I don’t have any other Linux or windows computers on this network. Or should I say I don’t want to put in any other computers, I just want to maintain one computer, the SME computer. Up stream computers will surf the net through this SME Server via Squidguard.

I don’t mind the fact that there is no gui (other than the server manager web pages). But in this case I need to open web pages to be able to manage the routers that are connected up stream and down stream from the SME server. This is so I can obviously administer them. This is a remote site so I don’t want to travel to it every time I want to adjust something on the routers and DSL modem.  I just want to remotely log into the SME server from outside and then be able to administer the routers / devices.

So all I need really is something to browse in a nice x-window (or what ever). I do not want to use any of the text based browsers eg lynx. I want a "normal" (excuse if you take offence at the word normal) window. I know that many frown upon any x-windows on the server, but in this case I really don’t want to maintain a separate computer just to browse to routers.

Is there anything that can be added to do this. I once some time ago (I think on version 6) tried to install Centos with SME but didn’t find it successful, for reasons that escape me right now. I’m really trying to find something simple. I don’t need all the stuff that comes with these kinds of installs anyway (Centos). Besides I would like to change as little as possible regarding the install so that the SME Software runs as normally as possible. I just want to have a browser.

I hope I have been clear enough regarding my question and maybe there will be something that fits my problem.

Thanks.

[Stefano]

you don't need any kind of GUI or x-windows system to achieve your goal..

you just need to connect via vpn or ssh tunnel and use your standard prowser/tool fron your client..

if you need more details, write here

Stefano

[steve288]

Well yes Stefano,

I think what you are suggesting is to set up a vpn connection from your local computer to the remote SME computer then type in the Ip address of the router say 192.168.1.1 and you will be taken to the router.

Is that the idea ?? Please adjust my thinking if I'm wrong.

thanks.

[Stefano]

yes, it is..

[steve288]

Yes that sounds like a very good solution. Thanks.

Is this already installed into SME?

Ive wondered what happens if for example you have your local router is 192.168.1.1 and the router on the remote site is the same 192.168.1.1. ?

Also I have not thought it through but, If the SME is behind the DSL router provided by the Telco and it is a firewall / router / DSL all in one, am I going to have to port forward the router to the SME computer. 

Im sorry Im not quite sure. Or can will a regular set up eg one card connected to the router and the other connected to the lan network do ?

(perhaps your answer will be it depends on the router, thinking out loud)

[Stefano]

to create a vpn (any kind of) connection your private ip MUST be on a different address space than the remote lan..

for example, if remote lan is 192.168.1.0/24, your ip mus be different from 192.168.1.X

is it clear?

ah, yes, pptpd vpn (m$ standard one) functionality works out of the box

HTH

[steve288]

Thanks S.
Based on your helpful hints.

I have set up a test SME machine. Two Nics. I have set up the vpn connection from external to SME. I put a windows machine locally on the inside, just as a test and presto once I connect via vpn from outside I can ping the Windows machine inside. Disconnect and I cannot ping it. Great.

As a test I can while connected via vpn use vnc to connect to the windows from the wan to the lan windows computer.

Genius I tell you Genius.

I'm doing this on my network in house so it might be a little different in the field but eg the Router issue, forwarding etc not sure but. This has certainly moved me along a lot.

Thanks for the tip.

[Stefano]

Genius I tell you Genius.

ROTFL

I'm doing this on my network in house so it might be a little different in the field but eg the Router issue, forwarding etc not sure but. This has certainly moved me along a lot.

you need to portforward port 1723 TCP and protocol 47 GRE, but nowadays all routers can do it easily

ciao

[steve288]

Thanks ... once again. I'll look that up and do some research. I'm not going to be there for a while so am going to have to set things up and then have to go there and fiddle with it when I'm there. Its in a dark dank basement I hate being there at night. o-oooh scary. (thus I want remote access).

You know these telco's lock things down but hopefully your right.

Thanks.