Hi, can someone give me a quick tutorial on how to setup a VPN connection using my current ASL 4 box? I poked around a bit but couldn't find anything. Thanks
You have to configure the PPTP Road Warrior option under Network-PPTP Road Warrior Access
(Also you have to define users you want to allow access).
To access this from Windows, highly recommend Win2K (With SP4 or higher) or Windows XP as clients.
Win98 doesnt work well.
Please note that with this type of connect, ALLinternet traffic from the client will go down the PPTP connection unless you create routing rules on the client.
On the Windows side, use the new network connection wizard, should be fairly self explanatory.
You have to configure the PPTP Road Warrior option under Network-PPTP Road Warrior Access
(Also you have to define users you want to allow access).
To access this from Windows, highly recommend Win2K (With SP4 or higher) or Windows XP as clients.
Win98 doesnt work well.
Please note that with this type of connect, ALLinternet traffic from the client will go down the PPTP connection unless you create routing rules on the client.
On the Windows side, use the new network connection wizard, should be fairly self explanatory.
Aswome, I got that going easily, but do i have to add a routing rule for all of the people that connect to the VPN so that they will still have internet?
First I wouldnt recomend using PPTP I would go with IPsec instead. IPsec though more ocmplex and a little harder to configure is by far more secur etahn PPTP. Since you are using windows 98se you can dowload the msl2tp client free (as in beer) from microsoft. Although a comercail client can also be used free tends to beat near and post $100 price tags for 3rd part clients (even though technically msl2tp is a thirsd party client since its really just a hacked up version of SoftRemote) . Astaro comes with SuperFrees/WAN as its IPsec Server. There is plenty of documentation on setting up and configuring Freeswan. If you do use msl2tp as your client you might want to look into getting a newwer version of SuperFreeS/WAN as there is a patch for msl2tp Malformed packet. You can also patch it manually and just recompile it. If you decide to upgrade you can either load everything as modules or compile it into the kernel itself thats up to you (I'd go with modules). There are 2 great tutorials on setting it up for IPsec you can fid them here http://www.jacco2.dds.nl/networking/freeswan-l2tp.html and here http://www.jacco2.dds.nl/networking/msl2tp.html. If you ever decide to upgrade to XP I would suggest moving to a third party client. I've had problems with the WinXP client not encrypting local trafic. Since you can't use msl2tp with XP you can use with SSH Sentinel of SofRemote ( What msl2tp is based off of ) I'd go with SSH Sentinel as its very configurable and fairly easy to use. The documentation for it is at http://www.ssh.com/documents/31/ssh_sentinel_14_freeswan.pdf the licence costs about $80 dollars I think but its worth it if you ask me.
I have dozens of users in WIN95 and WIN98 using DUN 1.4 into the ASTARO 4 (and ASTARO 2) without problems. WinXP users log the VPN (PPTP) with the software in WinXP, no extra software.
Not sure if that is the problem but at microsoft website there is a DUN 1.4 for WIN98 and another for WIN98SE may be there is the problem.
How did you manage this? I am using the DUN 1.4SE, but I constantly get the error "Can't connect to remote computer". With WinXp no problems, with 98Se error as mentioned...
Sometimes I got "Cannot connect..." error. The problem was that the firewall didn't knew the route back to the user network.
Other case I found is that eventually when the user name for the PPTP session match a hostname in the DNS I got the error and if I look into the firewall pptp log I see that the session is being try with user name as \name. Usually \ is added by Microsoft operating services meaning a network connection to a host. I know is quite bizarre but it's happen to me on WIN95 and WIN98 but not in WINXP. And the funniest thing is that this error happens only sometimes.
Other moment I got that error is when the total amount of VPN tunnels for that version of ASTARO is reach or surpassed.
No idea. I lot's of PPTP problems on WIN95 and WIN98 until I upgrade to DUN 1.4 now looks stable to me.
My own experience with W98, both original and SE, has been disappointing when trying to do PPTP to ASL. The connection establishes just fine once encryption is set up (and ONLY if you've loaded the DUN 1.4 upgrade from MS); once the connection was running I was able to ping and telnet across the connection without problems. However, as soon as I tried to use a browser either to read intranet pages or access port 5800 VNC, the connection would spontaneously disconnect and bring up a "redial" dialog box. Never did get that problem resolved.
However, I have had no such problem with either W2K or XP clients, so I'm convinced that the issue was ASL plus W98.
