Hi Nick,
I'm going to try a road warrior type setup initially. I hope to have some success with ccertificates... I've managed to get ssl support up and running in the past, so, touch wood... (: I've read through the available docs online. A good cure for insomnia, I thought, although the pdf versions seem a bit livelier!
I've just downloaded 1.4.1 ( the real thing, not a beta ), and have the luxury of a very strangely configured alcatel adsl router, which responds to 192.168.1.254 and 10.0.0.138, which will allow me to test everything out without disrupting anyone in the process!
If anyone's interested, I'll publish a log of trials and tribulations? Where's that wiki gone now.
Cheers,
Steve
Nick Rout wrote:
Are you trying to set up a road warrior config or a subnet-subnet config?
(road warrior is where one peripatetic user authenticates then has access to the lan behind the ipcop box, a la roving laptop user who needs access to the office network. subnet-subnet is where you want to join two networks, both behind ipcop firewalls, so that you can smoothly browse and access both networks - eg joining two branch offices - or your home network and your office network)
There are good road warrior howtos on the ipcop site.
I have had a subnet-subnet operation working on 1.3, but I haven't
managed to get it back up and running lately on various 1.4
beta-rc-final variants. You need different subnets at each end or it
won't route properly. eg 192.168.1.x at one end and 192.168.2.x at the
other. you also need to sort out smb browsing if you are using
windows/samba.
I would try a shared key first, i found the certificate stuff just too hard. I know shared key is not necessarily the best, but I haven't ever managed to get anthing else working.
On Thu, 2004-11-25 at 22:13 +1300, Steve Holdoway wrote:
Hi folks,
are there any gotchas I should know about setting up vpns to an ipcop firewall... especially by an ipcop virgin like myself?
Cheers,
Steve
