pait.servi...@googlemail.com
Subject: Re: [Astlinux-users] OpenVPN config
Am 03.04.2012 um 14:19 schrieb Tom Chadwin:
OK. I've enabled that plug-in (by the way, the config file says "#
Automatically enabled when AstLinux IPsec Associations are defined" which
didn't
31
> To: nnpait.servi...@googlemail.com; AstLinux Users Mailing List
> Subject: Re: [Astlinux-users] OpenVPN config
>
>
> Am 03.04.2012 um 09:16 schrieb Tom Chadwin:
>
>> Thanks Michael. One other question - in the IPsec config, should local
> host
>> be the loc
m
-Original Message-
From: Michael Keuter [mailto:li...@mksolutions.info]
Sent: 03 April 2012 08:31
To: nnpait.servi...@googlemail.com; AstLinux Users Mailing List
Subject: Re: [Astlinux-users] OpenVPN config
Am 03.04.2012 um 09:16 schrieb Tom Chadwin:
> Thanks Michael. One other qu
Am 03.04.2012 um 09:16 schrieb Tom Chadwin:
> Thanks Michael. One other question - in the IPsec config, should local host
> be the local box's LAN or WAN address?
>
> Thanks again
>
> Tom
Local-Host is the WAN-address of your local box, Local-Net the LAN-network of
this box like 192.168.1.0/
Users Mailing List
Subject: Re: [Astlinux-users] OpenVPN config
Am 03.04.2012 um 08:58 schrieb Tom Chadwin:
> Thank you all. I shall maybe try IPSec, in that case. Final question until
I
> break something again: presumably there are no problems with an Astlinux
box
> as an IPSec server (st
Am 03.04.2012 um 08:58 schrieb Tom Chadwin:
> Thank you all. I shall maybe try IPSec, in that case. Final question until I
> break something again: presumably there are no problems with an Astlinux box
> as an IPSec server (static VPNs) and OpenVPN server (road warriors) at once?
>
> Thanks agai
Abelbeck [mailto:li...@lonnie.abelbeck.com]
Sent: 30 March 2012 20:23
To: AstLinux Users Mailing List
Subject: Re: [Astlinux-users] OpenVPN config
Hi James and Tom,
First, I can't say I ever disagreed with James, but I guess there is always
a first time. :-)
I'd use UDP as the transpor
Hey Lonnie,
I've always just chosen TCP since I've found it easier in general to get
around possible NAT issues - especially in more heavily fortified networks
like hotels. My OpenVPN implementation is more for remote client
connections (laptops, tablets, phones, etc.) then a direct Server-to-Serv
Mailing List
Subject: Re: [Astlinux-users] OpenVPN config
Hi James and Tom,
First, I can't say I ever disagreed with James, but I guess there is always a
first time. :-)
I'd use UDP as the transport Protocol, not TCP. TCP over TCP can lead to
jitter problems. So unless there is s
st and write up for other beginners.
> >
> > Thanks again for all your help
> >
> > Tom
> >
> >
> > -----Original Message-
> > From: Lonnie Abelbeck [mailto:li...@lonnie.abelbeck.com]
> > Sent: 30 March 2012 17:53
> > To: AstLinux Users Mailing List
>
Hi James and Tom,
First, I can't say I ever disagreed with James, but I guess there is always a
first time. :-)
I'd use UDP as the transport Protocol, not TCP. TCP over TCP can lead to
jitter problems. So unless there is some upstream restrictions, I'd suggest
using Protocol: UDP
No need to
all your help
>
> Tom
>
>
> -Original Message-
> From: Lonnie Abelbeck [mailto:li...@lonnie.abelbeck.com]
> Sent: 30 March 2012 17:53
> To: AstLinux Users Mailing List
> Cc: Tom Chadwin
> Subject: Re: [Astlinux-users] OpenVPN config
>
> Hi Tom.
Well, since the server is bricked, it sounds like you won't be able to do
anything until Monday.
But once you get access back to it, if you want to proceed through the GUI,
you can try using the settings I pasted earlier- under OpenVPN Server
configuration.
In summary:
(Tunnel Options)
Protocol:
nd write up for other beginners.
Thanks again for all your help
Tom
-Original Message-
From: Lonnie Abelbeck [mailto:li...@lonnie.abelbeck.com]
Sent: 30 March 2012 17:53
To: AstLinux Users Mailing List
Cc: Tom Chadwin
Subject: Re: [Astlinux-users] OpenVPN config
Hi Tom.
The OpenVPN Se
Hi Tom.
The OpenVPN Server network is totally new and unique, only one box will run as
a server, why not use:
Network: 10.8.1.0 255.255.255.0
for the server endpoint.
Then the Clients would have
Remote Server: 1.2.3.4 (public IPv4 address of OpenVPN server)
Remote Network: 10.8.1.0 255.255.
No problem.
To answer your question, yes this should be a new and unique network
dedicated solely for the tunnel. So in your example, it should be ccc. As
long as the network doesn't overlap any other existing networks, you should
be fine. And keep in mind that the only "devices" on this network w
Many thanks indeed for this. I shall certainly attempt this once I have
sorted out the issues on Monday. One question:
> (Server Mode)
> Network: ***This is the network you want to be running over the TUNNEL.
Make sure you chose something not being used by any other network interface.
This might h
What are the goals you are trying to accomplish with the VPN tunnel?
Are you trying to just create an encrypted tunnel between the two Astlinux
boxes for inter-server communication, or are you trying to route traffic
across it as well? Are there certain networks you do/don't want to route
traffic
> Are you trying to just create an encrypted tunnel between the two Astlinux
boxes for inter-server communication, or are you trying to route traffic
across it as well? Are there certain networks you do/don't want to route
traffic across?
Connect two (well, four) subnets. We have a head office and
23
To: 'AstLinux Users Mailing List'
Subject: Re: [Astlinux-users] OpenVPN config
Tom,
If both ends are static IP's you might be better off using ipsec. There are
aspects of traffic shaping that are better handled with ipsec connections.
Are you looking for an example using the web inte
Tom,
If both ends are static IP's you might be better off using ipsec. There are
aspects of traffic shaping that are better handled with ipsec connections.
Are you looking for an example using the web interface in AstLinux or are you
trying to do this from the CLI?
Darrick
-Original Mess
Would it not be easier to set up a IPSec tunnel between two routers?
And then link the two boxes together.
Jason
-Original Message-
From: Tom Chadwin [mailto:nnpait.servi...@googlemail.com]
Sent: Friday, March 30, 2012 9:19 AM
To: 'AstLinux Users Mailing List'
Subject: [Astlinux-users]
22 matches
Mail list logo
