W dream

Posted on Sunday, 29th November 2009 by Balazs

Problem
It is necessary for some users to have all their traffic directed through the OpenVPN concentrator. The number one reason for such a configuration is to protect the HTTP traffic over unsecured WiFi (a.k.a. hotspots).
Solution
Add to the bottom of the connecting client’s configuration file (typically under /etc/openvpn/clients.d the following line:
push “redirect-gateway”

Share and Enjoy:

Tags: OpenVPN, Schimo, Tunnelblick, VPN
Posted in Linux, Mac OS X, OpenBSD | Comments (Comments)

Posted on Tuesday, 30th June 2009 by Balazs

Premise
Setting up VPN with IPsec using public / private key authentication between two networks using OpenBSD firewalls.
Concept
Each VPN concentrator will have the public key fo the other machine, and one of the VPN concentrators will be designated as the active requester. The other will be set up in a passive role, to accept the [...]

Tags: isakmp, VPN
Posted in OpenBSD | Comments (Comments)

Posted on Sunday, 31st May 2009 by Balazs

Setting up a folder for PPTP access:

Right click and select properties
Select Sharing tab
Check “Share this folder” and give it a share name
Click the permissions button, and make sure that only the right user(s) have permission

Setting up user for PPTP:

Start->Settings->Network and Dial-up connections->Incoming connections
Click users tab
Check the check box next to user to authorize

Share and Enjoy:

Tags: PPTP, VPN
Posted in Windows | Comments (Comments)

Posted on Friday, 29th May 2009 by Balazs

I found this solution in the summary of a related thread on misc@openbsd.org (mailing list).
Thanks for the various assists on this, I’m glad to say that the problem I was having is now solved. I am now successfully interworking dynamically addressed (DHCP) Win2K-pro and XP clients with OpenBSD isakmpd using X.509 certificate-based authentication. I [...]

Tags: VPN
Posted in OpenBSD | Comments (Comments)

Posted on Friday, 29th May 2009 by Balazs

Here are some of the resources we found useful to learn more about VPNs in general and on OpenBSD specifically:

FreeSWAN Project Documentation
Braindead RSA
OpenBDS Support

Share and Enjoy:

Tags: VPN
Posted in OpenBSD | Comments (Comments)

Posted on Sunday, 24th May 2009 by Balazs

There is some very good info here:http://www.allard.nu/openbsd/ specifically, I found the following hints helpful:

‘isakmpd -d’
Start isakmpd with ‘isakmpd -d’. Isakmpd will output things like wrong file permissions and typos in the configuration file. On connect you might see things like “NO PROPOSAL CHOOSEN” which can either mean that your configuration parameters between the client and [...]

Tags: isakmp, OpenBSD, VPN
Posted in OpenBSD | Comments (Comments)

Posted on Sunday, 24th May 2009 by Balazs

The original of this HOWTO was here: OpenBSD – PIX ISAKMP VPN
Setting up an ISAKMP VPN tunnel between OpenBSD 4.5 and Cisco Pix

Configuration:

Site A:

OpenBSD 4.5
Internal Network: 192.168.0.0/24
External IP: 1.1.1.1

Site B:

Cisco Pix 6.1
[...]

Tags: Cisco, isakmp, OpenBSD, VPN
Posted in OpenBSD | Comments (Comments)