Hi, can someone give me a quick tutorial on how to setup a VPN connection using my current ASL 4 box? I poked around a bit but couldn't find anything. Thanks
You have to configure the PPTP Road Warrior option under Network-PPTP Road Warrior Access
(Also you have to define users you want to allow access).
To access this from Windows, highly recommend Win2K (With SP4 or higher) or Windows XP as clients.
Win98 doesnt work well.
Please note that with this type of connect, ALLinternet traffic from the client will go down the PPTP connection unless you create routing rules on the client.
On the Windows side, use the new network connection wizard, should be fairly self explanatory.
Aswome, I got that going easily, but do i have to add a routing rule for all of the people that connect to the VPN so that they will still have internet?
First I wouldnt recomend using PPTP I would go with IPsec instead. IPsec though more ocmplex and a little harder to configure is by far more secur etahn PPTP. Since you are using windows 98se you can dowload the msl2tp client free (as in beer) from microsoft. Although a comercail client can also be used free tends to beat near and post $100 price tags for 3rd part clients (even though technically msl2tp is a thirsd party client since its really just a hacked up version of SoftRemote) . Astaro comes with SuperFrees/WAN as its IPsec Server. There is plenty of documentation on setting up and configuring Freeswan. If you do use msl2tp as your client you might want to look into getting a newwer version of SuperFreeS/WAN as there is a patch for msl2tp Malformed packet. You can also patch it manually and just recompile it. If you decide to upgrade you can either load everything as modules or compile it into the kernel itself thats up to you (I'd go with modules). There are 2 great tutorials on setting it up for IPsec you can fid them here http://www.jacco2.dds.nl/networking/freeswan-l2tp.html and here http://www.jacco2.dds.nl/networking/msl2tp.html. If you ever decide to upgrade to XP I would suggest moving to a third party client. I've had problems with the WinXP client not encrypting local trafic. Since you can't use msl2tp with XP you can use with SSH Sentinel of SofRemote ( What msl2tp is based off of ) I'd go with SSH Sentinel as its very configurable and fairly easy to use. The documentation for it is at http://www.ssh.com/documents/31/ssh_sentinel_14_freeswan.pdf the licence costs about $80 dollars I think but its worth it if you ask me.
First I wouldnt recomend using PPTP I would go with IPsec instead. IPsec though more ocmplex and a little harder to configure is by far more secur etahn PPTP. Since you are using windows 98se you can dowload the msl2tp client free (as in beer) from microsoft. Although a comercail client can also be used free tends to beat near and post $100 price tags for 3rd part clients (even though technically msl2tp is a thirsd party client since its really just a hacked up version of SoftRemote) . Astaro comes with SuperFrees/WAN as its IPsec Server. There is plenty of documentation on setting up and configuring Freeswan. If you do use msl2tp as your client you might want to look into getting a newwer version of SuperFreeS/WAN as there is a patch for msl2tp Malformed packet. You can also patch it manually and just recompile it. If you decide to upgrade you can either load everything as modules or compile it into the kernel itself thats up to you (I'd go with modules). There are 2 great tutorials on setting it up for IPsec you can fid them here http://www.jacco2.dds.nl/networking/freeswan-l2tp.html and here http://www.jacco2.dds.nl/networking/msl2tp.html. If you ever decide to upgrade to XP I would suggest moving to a third party client. I've had problems with the WinXP client not encrypting local trafic. Since you can't use msl2tp with XP you can use with SSH Sentinel of SofRemote ( What msl2tp is based off of ) I'd go with SSH Sentinel as its very configurable and fairly easy to use. The documentation for it is at http://www.ssh.com/documents/31/ssh_sentinel_14_freeswan.pdf the licence costs about $80 dollars I think but its worth it if you ask me.
