Comments on: How to set up a VPN server on Ubuntu http://cviorel.easyblog.ro/2009/02/09/how-to-set-up-a-vpn-server-on-ubuntu/ Tutorials, tips & tricks about Ubuntu Linux Mon, 24 May 2010 07:35:36 +0000 hourly 1 http://wordpress.org/?v=3.0 By: cviorel http://cviorel.easyblog.ro/2009/02/09/how-to-set-up-a-vpn-server-on-ubuntu/comment-page-1/#comment-23368 cviorel Wed, 10 Mar 2010 14:45:23 +0000 http://cviorel.easyblog.ro/?p=340#comment-23368 @disturbingprod You can create a normal VPN and using your firewall rules you can define wich traffic goes where. @disturbingprod
You can create a normal VPN and using your firewall rules you can define wich traffic goes where.

]]> By: disturbingprod http://cviorel.easyblog.ro/2009/02/09/how-to-set-up-a-vpn-server-on-ubuntu/comment-page-1/#comment-22980 disturbingprod Thu, 04 Mar 2010 15:28:24 +0000 http://cviorel.easyblog.ro/?p=340#comment-22980 How would one go about setting up a VPN that only passes certain data through for a certain service. I want to set up a VPN so my remote machines will use their local connection for all web traffic and only antivirus updates go through the VPN. How would one go about setting up a VPN that only passes certain data through for a certain service. I want to set up a VPN so my remote machines will use their local connection for all web traffic and only antivirus updates go through the VPN.

]]> By: cviorel http://cviorel.easyblog.ro/2009/02/09/how-to-set-up-a-vpn-server-on-ubuntu/comment-page-1/#comment-22847 cviorel Wed, 24 Feb 2010 15:30:17 +0000 http://cviorel.easyblog.ro/?p=340#comment-22847 @arie Check this article about radius based VPN: http://www.debian-administration.org/article/Creating_a_radius_based_VPN_with_support_for_Windows_clients @arie
Check this article about radius based VPN:
http://www.debian-administration.org/article/Creating_a_radius_based_VPN_with_support_for_Windows_clients

]]> By: arie http://cviorel.easyblog.ro/2009/02/09/how-to-set-up-a-vpn-server-on-ubuntu/comment-page-1/#comment-22844 arie Wed, 24 Feb 2010 13:47:43 +0000 http://cviorel.easyblog.ro/?p=340#comment-22844 how I can connect RADIUS and VPN?? how I can connect RADIUS and VPN??

]]> By: cviorel http://cviorel.easyblog.ro/2009/02/09/how-to-set-up-a-vpn-server-on-ubuntu/comment-page-1/#comment-21286 cviorel Wed, 25 Nov 2009 06:38:59 +0000 http://cviorel.easyblog.ro/?p=340#comment-21286 @ramon Here is all the info you need: http://quozl.linux.org.au/pptp/pptpd.conf.5.html#OPTIONS @ramon
Here is all the info you need:
http://quozl.linux.org.au/pptp/pptpd.conf.5.html#OPTIONS

]]> By: Ramon http://cviorel.easyblog.ro/2009/02/09/how-to-set-up-a-vpn-server-on-ubuntu/comment-page-1/#comment-21285 Ramon Wed, 25 Nov 2009 02:13:12 +0000 http://cviorel.easyblog.ro/?p=340#comment-21285 i need help please, im on this step right now: # nat Table rules *nat :POSTROUTING ACCEPT [0:0] # Forward traffic from eth1 through eth0. -A POSTROUTING -s 192.168.0.0/24 -o eth0 -j MASQUERADE # don't delete the 'COMMIT' line or these nat table rules won't be processed COMMIT before i continue i have a question that way i wont have future problems, in the localip i put my server local ip address wich is 192.168.1.110 and in the remoteip i only change the 0 for a 1, is that ok? im kind of confuse now, here the reason why i dont want to continue is because this is a Asterisk Server that i build and is working with a SIP Trunk perfect and i dont want to mess it up, so far i have been accessing thru SSH, but i will love to use a VPN connection, any help, thanks in advance! i need help please, im on this step right now:

# nat Table rules
*nat
:P OSTROUTING ACCEPT [0:0]

# Forward traffic from eth1 through eth0.
-A POSTROUTING -s 192.168.0.0/24 -o eth0 -j MASQUERADE

# don’t delete the ‘COMMIT’ line or these nat table rules won’t be processed
COMMIT

before i continue i have a question that way i wont have future problems, in the localip i put my server local ip address wich is 192.168.1.110 and in the remoteip i only change the 0 for a 1, is that ok? im kind of confuse now, here the reason why i dont want to continue is because this is a Asterisk Server that i build and is working with a SIP Trunk perfect and i dont want to mess it up, so far i have been accessing thru SSH, but i will love to use a VPN connection, any help, thanks in advance!

]]> By: LilJohn http://cviorel.easyblog.ro/2009/02/09/how-to-set-up-a-vpn-server-on-ubuntu/comment-page-1/#comment-21230 LilJohn Thu, 19 Nov 2009 21:45:45 +0000 http://cviorel.easyblog.ro/?p=340#comment-21230 ok i found the issue, at the begining you use these perameters: localip 192.168.0.1 remoteip 192.168.1.1-255 and then for ufw masq you use this rule to route the pptp clients traffic: -A POSTROUTING -s 192.168.0.0/24 -o eth0 -j MASQUERADE 192.168.0.0/24 (aka 255.255.255.0) will not route the 192.168.1.1-255 ipaddress range you must use 192.168.0.0/16 (aka 255.255.0.0) the following rule will work: -A POSTROUTING -s 192.168.0.0/16 -o eth0 -j MASQUERADE ok i found the issue, at the begining you use these perameters:
localip 192.168.0.1
remoteip 192.168.1.1-255
and then for ufw masq you use this rule to route the pptp clients traffic:
-A POSTROUTING -s 192.168.0.0/24 -o eth0 -j MASQUERADE
192.168.0.0/24 (aka 255.255.255.0) will not route the 192.168.1.1-255 ipaddress range you must use 192.168.0.0/16 (aka 255.255.0.0)
the following rule will work:
-A POSTROUTING -s 192.168.0.0/16 -o eth0 -j MASQUERADE

]]> By: cviorel http://cviorel.easyblog.ro/2009/02/09/how-to-set-up-a-vpn-server-on-ubuntu/comment-page-1/#comment-21224 cviorel Thu, 19 Nov 2009 09:26:03 +0000 http://cviorel.easyblog.ro/?p=340#comment-21224 @ LilJohn Do you have the right network in your <em>/etc/ufw/before.rules</em> file? @ LilJohn
Do you have the right network in your /etc/ufw/before.rules file?

]]> By: LilJohn http://cviorel.easyblog.ro/2009/02/09/how-to-set-up-a-vpn-server-on-ubuntu/comment-page-1/#comment-21216 LilJohn Wed, 18 Nov 2009 19:48:18 +0000 http://cviorel.easyblog.ro/?p=340#comment-21216 ok i added an execption in ufw to allow the pptp port through: sudo ufw allow 1723 this allows me to connect the the vpn server but IP Masquerading isn't working, i cant access any websites or anything on the internetfor that matter while connected to the vpn. anythoughts? again i need to get this running asap for work. ok i added an execption in ufw to allow the pptp port through:
sudo ufw allow 1723
this allows me to connect the the vpn server but IP Masquerading isn’t working, i cant access any websites or anything on the internetfor that matter while connected to the vpn. anythoughts? again i need to get this running asap for work.

]]> By: LilJohn http://cviorel.easyblog.ro/2009/02/09/how-to-set-up-a-vpn-server-on-ubuntu/comment-page-1/#comment-21213 LilJohn Wed, 18 Nov 2009 19:20:12 +0000 http://cviorel.easyblog.ro/?p=340#comment-21213 Ok so i followed your instructions in this nice how-to but i still cant get ufw to let my pptp traffic through. if i disable ufw then it lets me connect but then masqurading doesnt work. any ideas? anything i should add to ufw? im trying to set this up at work so i need to get this going sooner rather than later. thanks Ok so i followed your instructions in this nice how-to but i still cant get ufw to let my pptp traffic through. if i disable ufw then it lets me connect but then masqurading doesnt work. any ideas? anything i should add to ufw? im trying to set this up at work so i need to get this going sooner rather than later.
thanks

]]>