Topic: VPN woes, help me to get there

[Kingnubian]

I have my SME 5.6b7 box in server only mode on a network with a WXP pro machine all configured for the same workfroup. These 2 machines sit behing an SMC 7004VBR router. I have also setp an account with DYNDNS.org and can ping and contact my machin from the outside with the dyndns domain name I setup.

I want to have the SME box setup as a VPN server able to authenticate PPTP logins and share files via a public Ibay on the same machine.

I have tried port forwarding 1723 directly to the SME server and can get a user authenticated but that's it. The user cannot see the Ibay or even see the server in Network Neighborhood, a dead end. Can I get some insight into what's happening.

As A Side note, I've seen mention of FreeSwan, can I also get some info on what this is and how I may benefit from it or not?

[Lloyd Keen]

After you make the vpn connection are you able to ping the SME box? If so try mapping the i-bay to a network drive with the following from the vpn client:
net use v: \server_name\i-bay_name

[Kingnubian]

This is amazing stuff. Using your very simple instructions I actually have VPN working right now!!

A couple of questions though. Why the need for  a command line when the vpn connection created in WXP is "Supposed" to be enough??

                                                 Ben

[Lloyd Keen]

It doesn't need to be done from the command line, sometimes it's just easier when testing. If you'd like to browse the shares from My Network Places just search for the server by IP address rather than computer name, when you find the share you're after you can just right click and "map a network drive".

[greg]

Your email indicates your setup maybe very similar to what I want to do.

Below I describe what I would like, but I have some gaps I will need to fill in. I would appreciate any assistance.

FYI: I will be documenting the entire process and posting when I get it completed.

My setup:
1. Simulate a W2K domain controller to run a login script for my home. We will have a number of windows machines and two linux workstations connecting.
< I know - edit \servername\netlogon\netlogn.bat>

2. Server sits inside a Linksys router, router connecting to my ISP a getting a dynamic IP address (although it is dynamic, it only changes a couple times a year)
< any issues here?>

3. Already have a domain name registered, so I may need some sort of address monitoring / updating application
< can anyone give me a reference?>

4. Would like to host my own mail and website
< any issues hosting behind a Linksys router?>

5. Share certain ibays via the website (music and pics)
< no problem>

6. Backup data via DLT tape
< to be tested, should be fine>

7. VPN capability
< port map router to forward 1723 to server, ping server, net use X: \server_name\i-bay_name> >



My hardware:
Server:
- HP Netserver LC II
  64 MB RAM (today, hopefully be able to add another 256 shortly)
  HDs - only capable of having 3, I have 3 x 4GB, a 9GB and 18GB
   - will probably use a 4GB for the OS and common data, 18GB for music and pics
   - Quantum 4/8GB DLT scsi tape drive
   - HP controller, could mirror the 4GB system  - OPINIONS?
- Linksys router - BEFSR41


Any guidance would be appreciated.

[Kingnubian]

Let me see if I can get my 2 cents in from my ow recent experience. I'm now doing everything you want to do. Check my comments next to your lines.
>
> Your email indicates your setup maybe very similar to what I
> want to do.
>
> Below I describe what I would like, but I have some gaps I
> will need to fill in. I would appreciate any assistance.
>
> FYI: I will be documenting the entire process and posting
> when I get it completed.
>
> My setup:
> 1. Simulate a W2K domain controller to run a login script for
> my home. We will have a number of windows machines and two
> linux workstations connecting.
> < I know - edit \servername\netlogon\netlogn.bat>
>
> 2. Server sits inside a Linksys router, router connecting to
> my ISP a getting a dynamic IP address (although it is
> dynamic, it only changes a couple times a year)
> < any issues here?>

BK> I use Ipcheck to update my IP changes as I have n account with DYNDNS. I have it runnig as a cron job. You can transfer your registered domain to a service like Dyndns and use ipcheck or another solution to keep the IP updated.
>
> 3. Already have a domain name registered, so I may need some
> sort of address monitoring / updating application
> < can anyone give me a reference?>

BK> See Above

>
> 4. Would like to host my own mail and website
> < any issues hosting behind a Linksys router?>

You will probably find that port 80 needed for you webserver is restricted by the router's nat firewall. You cna port forward port 80 to the SME server box in the intranet to get around this. I use port 81 for webmail, https, for more security so that port, if you choose to use this feature will have to be forwarded as well. Of course there is the idea of putting the server in a DMZ so al that port madnes can be avoided but this isn't how my setup is configured.
>
> 5. Share certain ibays via the website (music and pics)
> < no problem>
>
> 6. Backup data via DLT tape
> < to be tested, should be fine>
>
> 7. VPN capability
> < port map router to forward 1723 to server, ping server, net
> use X: \server_name\i-bay_name> >
>

BK> PPTP need port 1723 to be usuable. I have my SME box setup as a PDC and also have clients VPN into it without a problem.
>
>
> My hardware:
> Server:
> - HP Netserver LC II
>   64 MB RAM (today, hopefully be able to add another 256
> shortly)
>   HDs - only capable of having 3, I have 3 x 4GB, a 9GB and
> 18GB
>    - will probably use a 4GB for the OS and common data, 18GB
> for music and pics
>    - Quantum 4/8GB DLT scsi tape drive
>    - HP controller, could mirror the 4GB system  - OPINIONS?
> - Linksys router - BEFSR41

BK> I have all this running on even less ambitious hardware. P2 233 with 96M ram. Soon to add a 40 or  60 gig hardrive for file storage.
>


>
> Any guidance would be appreciated.