[kwlug-help] Openvpn assistance request.
unsolicited at swiz.ca
Fri Aug 19 18:32:37 EDT 2011
At first blush, way too complex / overboard. But not necessarily so.
One thing that would help - go back to your first message, and lay out
the sequence of steps / tiers you're looking for. As written it comes
in as a block of desired functionality. Can you rewrite it as
individual steps that ultimately result in your desired functionality?
i.e. The initial thrust here has been to just get OpenVpn started in
the most simplistic test case and establish the functionality.
Breaking down your desired functionality will let us identify and get
the first step going, then expand it to effect the next level, and repeat.
Concisely: The functionality expressed in your first message is a bit
big to swallow in a gulp, can you break it down into smaller bites?
Chamunks Arkturus wrote, On 08/19/2011 6:18 PM:
> sorry about the hasty and brief response I have actually been looking into
> running pfsense for some time now but am not really sure how I would do this
> I was thinking about doing some looping around with Vlans.
> Like this sort of arrangement.
> Dsl-Link1---WRT1 (WAN Port-Vlan1)
> Dsl-Link2---WRT1 (LAN Port1-Vlan1)
> WRT1(Vlan1)---PFSense (Red Port)
> PFSense(Green Port)---WRT1 (Lan Port2-Vlan2)
> WRT1(Vlan2-Wifi-Cat5-Ports[3/4])---Rest of home network
> Or does this sound absolutely insane?
> On Fri, Aug 19, 2011 at 6:07 PM, Paul Nijjar <paul_nijjar at yahoo.ca> wrote:
>> On Fri, Aug 19, 2011 at 05:06:26PM -0400, Chamunks Arkturus wrote:
>>> We have covered Open-vpn a couple times brushing the subject but is there
>>> any one who can maybe give me a hand in understanding how to get an
>>> server setup at my home lan?
>>> I have a ubuntu box already running a minecraft server and was
>>> hoping that I could possibly run it in that. I have an nx's
>>> nomachine server running from here for the occassion I get too lazy
>>> to commandline myself to death.
>> In order for the OpenVPN clients to see you they need to be able to
>> access your public IP address. At the very least this means port
>> forwarding from your router and giving your public IP a dynamic DNS
>> You probably could set up an OpenVPN server on your Ubuntu box, but I
>> could see that getting really awkward really quickly. If the only
>> resource you want to access remotely is your Minecraft server then you
>> can get away with it (I think) but giving access to your wider network
>> will get hard.
>> I think a better idea would be to use one of your WRT54GLs as your
>> main router, and then running OpenVPN off of that. This way, it will
>> be easy for clients connecting to your OpenVPN to access your entire
>> Once you have a server running then getting clients working via
>> OpenVPN is not that hard.
>> At work we use pfSense as our router, which gives us a nice web
>> interface for administering OpenVPN. But you can make this work with
>> OpenWRT too (and probably DD-WRT, although I have not looked into
>> this). It just means commandlining yourself to death.
>> - Paul
>> kwlug-help mailing list
>> kwlug-help at kwlug.org
> kwlug-help mailing list
> kwlug-help at kwlug.org
More information about the kwlug-help