News: This forum is now permanently frozen.
Pages: [1]
Topic: VPN  (Read 2426 times)
VPN
« on: November 04, 2009, 10:44:42 »
vgsangiuliano *
Posts: 15

Hi guys,
I need help in setting up an IPsec tunnel to reach my office LAN subnet with a latpop connected to internet with a simple modem (not router) to be able to do the same things I do when I'm at office computer. Here is attached my office net scheme. I read m0no related pages but I can't fully understand what all the parameters mean and furthermore what port and protocol should I forward from provider router to m0n0wall wan interface to allow vpn connection?
Thank you very much in advance


* schema.jpg (62.83 KB, 784x557 - viewed 277 times.)
« Last Edit: November 04, 2009, 10:53:55 by vgsangiuliano »

« Reply #1 on: November 04, 2009, 11:02:46 »
markb ****
Posts: 331

The main issue you will face is if the Provider router supports IPSEC pass through.  It would be much easier with PPTP.  UDP port 500 is used for IPSEC.
« Reply #2 on: November 04, 2009, 11:14:32 »
vgsangiuliano *
Posts: 15

I have full access to the provider router setup but I don't know what are the settings to do. It is an italian provider router with restricted access but I was able to unlock the full management control panel.
I see bridging option in the provider router web management page but I don't know what should I do.
Thank you
« Last Edit: November 04, 2009, 11:17:12 by vgsangiuliano »

« Reply #3 on: November 04, 2009, 14:48:27 »
vgsangiuliano *
Posts: 15

I made a further step. I was able to bypass the provider router, because it doesn't allow vpn passthrough but it allows ppoe passthroug. So now the wan interface f m0n0 has the pubblic static ip.
I was reading m0n0 documentation and in the vpn section it says
"This chapter will go over configuring a site to site Virtual Private Network (VPN) links between two m0n0walls"
First question: Do I need 2 m0n0 in for each end of the vpn?
I'd like to connect to office lan (the one with m0n0) from a laptop connected to internet by a simple modem.
Is it possible?
Furthermore according to the scheme I posted, what should I set as Remote subnet and Remote Gateway?
Thanks

« Reply #4 on: November 05, 2009, 10:45:23 »
markb ****
Posts: 331

There is asection in the FAQ for setting up road warriors with IPSEC however, if you are using windows, then you would probably have to use a third party IPSEC client.  They give an example usinf Safenet SoftRemoteLT.  However I don't believe this is available from Safenet anymore.  If you google, you should be able to find a copy somewhere.
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines