VPN Connection via OpenBSD
We have an OpenBSD firewall as the entry point to a small network of 4 Windows 2003 servers.
Could you give me some step by step instructions on how to set up the firewall so I can VPN into one of the servers from my Home PC?
I have fix IPs at both ends (point to point VPN) and Vista Business at home.
The firewall uses pf.conf for IP translation.
Could you give me some step by step instructions on how to set up the firewall so I can VPN into one of the servers from my Home PC?
I have fix IPs at both ends (point to point VPN) and Vista Business at home.
The firewall uses pf.conf for IP translation.
ASKER
Thanks mutahir!
I'm not very familiar with VPN protocols... All I want to do is to connect my home PC (Vista Business) to one of my Windows 2003 servers via the OpenBSD firewall. Does Windows know both PPTP and IPSEC?
Is this as simple as opening some ports on the firewall, configuring the the VPN Server Service on Win 2003 (http://technet.microsoft.com/en-us/library/cc736357.aspx), and configuring the VPN client on Vista?
Everything will be point to point (fix IP to fix IP) so I'm looking for the easiest solution to accomplish this.
I'm not very familiar with VPN protocols... All I want to do is to connect my home PC (Vista Business) to one of my Windows 2003 servers via the OpenBSD firewall. Does Windows know both PPTP and IPSEC?
Is this as simple as opening some ports on the firewall, configuring the the VPN Server Service on Win 2003 (http://technet.microsoft.com/en-us/library/cc736357.aspx), and configuring the VPN client on Vista?
Everything will be point to point (fix IP to fix IP) so I'm looking for the easiest solution to accomplish this.
ASKER
I read some articles about this and my understanding is that IPSEC is with Cetificates, which I don't want to use at this point. So PPTP would be enough.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks Mutahir.
I'm getting closer to a solution. The biggest issue is opening the tunnel through the Firewall, and the GRE protocol 47 in particular. I know how to forward PPTP port 1723.
I'm getting closer to a solution. The biggest issue is opening the tunnel through the Firewall, and the GRE protocol 47 in particular. I know how to forward PPTP port 1723.
Oh, are you stuck in the right commands for opening the tunnel ?
I will look into it and will post here ASAP.
Best of Luck
I will look into it and will post here ASAP.
Best of Luck
ASKER
Here's a good step-by-step resource:
http://www.ubergeek.co.uk/blog/2008/05/openvpn-freebsd-pf-windows-howto/
http://www.ubergeek.co.uk/blog/2008/05/openvpn-freebsd-pf-windows-howto/
What Kind of vpn is that ? PPTP or IPSEC ?
Check the following link for Ports used in PPTP, I have attached a OPENBSD PF ebook tutorial which will help you understand port redirection and filtering .
http://compnetworking.about.com/od/vpn/l/bl012101a11.htmhttp://compnetworking.about.com/od/vpn/l/bl012101a11.htm
Will update as and when you reply
Hope this helps
Mutahir
pf-faq.pdf