Koozali.org: home of the SME Server
Obsolete Releases => SME 7.x Contribs => Topic started by: jvels on July 16, 2006, 09:54:57 AM
-
Hi
What is difference between this 2 guides:
http://sme.swerts-knudsen.dk/index.html?frame=http%3A//sme.swerts-knudsen.dk/howtos/howto_30.htm
http://sme.firewall-services.com/HowtoOpenVPNSME7.pdf
Witch of this guide should I use?
Here is a diagram there show my net:
(http://vels.dk/vpn/net.jpg)
I need to conect to other devices fx. my_workstation and the printer with the VPN connection.
Witch of the guide can do so it is possibel?
I have tryed both guides, but do not get it to work, so I can access other devices then the SME server. Do i need to have the SME server as server and gateway or?
Right now it run server only mode.
-
Hi
I have now tryed this guide:
http://ftp://ftp.firewall-services.com/OpenVPN/How-To-VPN-Bridge-SME7.pdf
With this config file:
port 1194
dev tap0
dh dh1024.pem
ca ca.crt
cert server.crt
key server.key
auth-user-pass-verify ./validate.sh via-env
client-disconnect ./logoff.sh
duplicate-cn
server-bridge 192.168.0.5 255.255.255.0 192.168.0.25 192.168.0.49
ping 10
ping-restart 120
push "ping 10"
push "ping-restart 60"
push "dhcp-option DOMAIN velsnet.dk" # push the DNS domain suffix
push "dhcp-option DNS 192.168.0.5" # push DNS entries to openvpn client
push "dhcp-option WINS 192.168.0.5"
fragment 1400
mssfix
client-to-client
max-clients 25
comp-lzo
status-version 2
status openvpn-status.log
verb 3
I can log on VPN, the client says you got IP 192.168.0.50, but the TAP-Win32 Adapter V8 says:
Ethernet adapter VPN forbindelse:
Connection-specific DNS Suffix . :
Autoconfiguration IP Address. . . : 169.254.254.125
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . :
-
jvels
As configured now, your router needs to provide VPN server functionality for you to be able to connect to all devices on your network.
Put a modem & your sme server, where your router is now, and configure sme for server gateway mode & enable DHCP.
Connect NIC 1 to the modem
Connect NIC 2 to a hub that serves your LAN (perhaps your router can be used as a hub/switch if you disable router mode, DHCP etc).
You can VPN into the sme server and map or connect to other devices by IP. You don't need either of those howtos to do that.
-
Should it look like:
(http://vels.dk/vpn/net_new.jpg)
what do you mean with:
You don't need either of those howtos to do that.
-
jvels
> Should it look like:
Yes that's what I meant, with a modem between the Internet and sme of course.
> what do you mean with:
>> You don't need either of those howtos to do that.
I meant exactly what I said.
You can VPN into the sme server and map or connect to other devices by IP. You don't need either of those howtos to do that.
To elaborate, the sme server has a fully functional VPN server built in, just connect to the sme server using the VPN client in your external notebook.
When the VPN connection is established do something like
To connect to an ibay on the server
net use M: \\192.160.0.1\ibayname
or
to connect to a share on your workstation
net use N: \\192.168.0.152\sharename
or to use your printer, I suggest adding it as a printer to sme server manager first
net use \\192.168.0.1\printername
and configure your printer driver setup accordingly on the Notebook to use the shared printer called printername.
I guess you could directly access the printer too, by substituting it's IP
I note in your drawing you have the same IP for the printer & the AP, is that an error.
-
when I install the Asterisk PPTP do not work??
There for i try to get openVPN to work.
openvpn works, but I can only see the server :-(
-
when I install the Asterisk PPTP do not work??
There is no Asterisk PPTP - PPTP is built into the base distro. You enable it in Remote access. You allow it per user.
-
jvels
> You enable it in Remote access. You allow it per user
Yes, just to amplify that statement, you must enable PPTP (VPN) in the Remote Access server manager panel, and you must enable VPN for each user you want to be able to connect, in server manager also.