Wireless Security Through OpenVPN
Feb 18, 2006 | 11:53 AM
#1
Thread Starter
Contributing Member
Joined: Sep 2002
Posts: 1,610
Likes: 0
From: Mission, British Columbia
Wireless Security Through OpenVPN
I am trying to secure my wireless connection and give my laptop access to my home network whereever I am.
I started playing with OpenVPN ( http://openvpn.net/ ) and managed te create a routed ip tunnel (ip tunnel has its own sub net). I can ping through the tunnel, but cannot access other computers on the other side of the tunnel as of now.
My problem is (I think) that my VPN server & client are on the same subnet, so the routing wants to go directly to the VPN server without bothering to go through the tunnel.
That's why I bought a second router on Ebay (should get here this week) and I will put my wireless laptops on their own subnet. The extra router will naturally block request for the windows network so I should be able to route it through the tunnel.
I'll forward the tunnels its port through both routers to the VPN Server (External router --> internal router --> VPN Server
For the IP Tunnel I will set it to my external (WAN) ip address so where ever the laptop is, it should connect.
The windows networking on my regular network adapters will be turned off, and the virtual software adapter will have windows networking turned on. (OpenVNP creates a virtual network adapter under the network setup)
I added a pic of how I had it in mind. I would appreciate your thoughts on this setup, and see if we can get an intelligent discussion going
.
If my post is unclear, feel free to ask clarification.
I started playing with OpenVPN ( http://openvpn.net/ ) and managed te create a routed ip tunnel (ip tunnel has its own sub net). I can ping through the tunnel, but cannot access other computers on the other side of the tunnel as of now.
My problem is (I think) that my VPN server & client are on the same subnet, so the routing wants to go directly to the VPN server without bothering to go through the tunnel.
That's why I bought a second router on Ebay (should get here this week) and I will put my wireless laptops on their own subnet. The extra router will naturally block request for the windows network so I should be able to route it through the tunnel.
I'll forward the tunnels its port through both routers to the VPN Server (External router --> internal router --> VPN Server
For the IP Tunnel I will set it to my external (WAN) ip address so where ever the laptop is, it should connect.
The windows networking on my regular network adapters will be turned off, and the virtual software adapter will have windows networking turned on. (OpenVNP creates a virtual network adapter under the network setup)
I added a pic of how I had it in mind. I would appreciate your thoughts on this setup, and see if we can get an intelligent discussion going
.If my post is unclear, feel free to ask clarification.
Last edited by arjan; Feb 18, 2006 at 11:55 AM.
Feb 22, 2006 | 05:46 AM
#2
Registered User
Joined: Nov 2003
Posts: 1,537
Likes: 0
From: Portland, Oregon
Excellent VPN security plan.
A 'keep it simple' plan would have been to use a Linksys WRT54G model 2 or 4 router with
DD-WRT v23 or higher firmware. This would have saved you one router.
WRT54G is an embedded linux device with memory to spare. You can google DD-WRT, Seattle Wireless WRT54G for more information.
Again, excellent use of security.
A 'keep it simple' plan would have been to use a Linksys WRT54G model 2 or 4 router with
DD-WRT v23 or higher firmware. This would have saved you one router.
WRT54G is an embedded linux device with memory to spare. You can google DD-WRT, Seattle Wireless WRT54G for more information.
Again, excellent use of security.
Feb 22, 2006 | 06:43 AM
#3
Thread Starter
Contributing Member
Joined: Sep 2002
Posts: 1,610
Likes: 0
From: Mission, British Columbia
That's a good solution to keep in mind. As I was bugging around I realized it would work better with an extra subnet. The cheapest solution for me was to visit ebay for an extra router. I already have the wireless one.
I paid about $25 shipped for this one and it has a print server (parallel) build in. Those are not that common anymore, they all seem to offer usb print servers now.
I like how you can telnet into the linksys router, I am not sure what my SMC routers are running for OS.
I paid about $25 shipped for this one and it has a print server (parallel) build in. Those are not that common anymore, they all seem to offer usb print servers now.
I like how you can telnet into the linksys router, I am not sure what my SMC routers are running for OS.
Thread
Thread Starter
Forum
Replies
Last Post
Williamemslie
95.5-2004 Tacomas & 96-2002 4Runners
14
Oct 5, 2015 09:28 AM
jmyer72
95.5-2004 Tacomas & 96-2002 4Runners
1
Aug 20, 2015 07:55 AM
Suprarossa
99+ Tundra, 00+ Sequoia, 98+ Land Cruiser/LX470
0
Jul 6, 2015 05:21 AM
