Koozali.org: home of the SME Server

Legacy Forums => General Discussion (Legacy) => Topic started by: Mike Pascual on October 02, 2003, 05:09:36 PM

Title: IPSec/VPN Question
Post by: Mike Pascual on October 02, 2003, 05:09:36 PM

I'm running SME 5.6 U5, with freeswan modules in server-manager, my question is, how can I configured that the remote host with public IP will be connected to my SME 5.6 via VPN/IPSec then my SME 5.6 will give a private IP to the remote host so that it will be part of SME internal network. I'm not using SME as my DHCP server. Is this possible? my alternative for this problem is to use cisco pix.. but need know first if SME 5.6 can do this so that I can eliminate cost from buying such appliance.


Thanks....

Mike

Title: Re: IPSec/VPN Question
Post by: Lloyd Keen on October 02, 2003, 07:06:13 PM

You don't need freeswan to do this. The VPN server is configured in the remote access section of the server-manager. You specify how many pptp tunnels you would like to setup, then when the remote host connects it is given a private IP. It's all in the manual http://edocs.mitel.com/6000_SME_Server/6000_MAS_rls5.6/Admin_Guide_html_EN/admin-remoteaccess.html

Title: Re: IPSec/VPN Question
Post by: Brendan on October 02, 2003, 07:30:23 PM

has the issues with VPN been resolved in 5.6

and is SME v6 ok for VPN without the problems that plagued 5.6?

sorry for being off topic

Title: Re: IPSec/VPN Question
Post by: Mike Pascual on October 03, 2003, 07:18:24 AM

I got an error: 619, what this means? how secure this connection is?

Thank you very much

Title: Re: IPSec/VPN Question
Post by: Lloyd Keen on October 03, 2003, 07:42:19 AM

Have you applied Update5?

Title: Re: IPSec/VPN Question
Post by: Mike Pascual on October 03, 2003, 07:58:05 AM

yap, I have already patch the update 5.

Title: Re: IPSec/VPN Question
Post by: Lloyd Keen on October 03, 2003, 10:43:51 AM

Yeah, I've had the same same thing. Connecting fine for a while then all of a sudden "Error 619", leave it overnight and it fixes itself up. Are you trying to connect to the VPN server from behind an e-smith box? I think it's got something to do with the firewall blocking the authentication.

Title: Re: IPSec/VPN Question
Post by: Mike Pascual on October 03, 2003, 01:08:28 PM

My SME is not behind a firewall

Title: Re: IPSec/VPN Question
Post by: Lloyd Keen on October 03, 2003, 02:26:55 PM

What I mean is "Is your VPN client (XP, mandrake, RH - whatever)" behind an SME box trying to connect to another SME box acting as a VPN (pptp) server.

Title: Re: IPSec/VPN Question
Post by: Mike Pascual on October 03, 2003, 03:52:58 PM

I got it working, then after reboot same error again... my remote host is not connected to any firewall.

thanks and regards

Mike

Title: Re: IPSec/VPN Question
Post by: Manuel Lazo on October 06, 2003, 10:36:34 PM

If you are trying to connect via pptp, then you wanna try to edit options.pppd and add multilink (see the link)

If someone know how to make permanet this change, please post it!!

Thanks!

http://forums.contribs.org/index.php?topic=18635.msg73379#msg73379