|
|
> Only downside is I can't connect to the office while travelling, unless I > make a second VPN connection from my laptop to home. Unless anyone has a > clever way of setting my office PC up in such a way that it can connect to a > dynamic IP? Yes, it's actually possible to do this. You need a dynamic DNS setup (I use http://www.dyndns.org/ ). remote [my-dynamic-addr] ping 15 ping-restart 300 # 5 minutes resolv-retry 2592000 # 1 month persist-tun persist-key [other options...] Basically this config tells OpenVPN to re-resolve [my-dynamic-addr] after 5 minutes of inactivity. If [my-dynamic-addr] has a low TTL (time-to-live), then this type of config will cause the server to "follow" you -- as long as you keep your current IP address updated with your dynamic DNS provider using one of the many dynamic DNS client tools (I use ddclient). The resolv-retry line will allow you to take your dynamic DNS name offline when you aren't connected -- this will also take OpenVPN offline as well until the dynamic DNS name becomes resolvable again. James > Hope this helps some people (and maybe your can incude some of these details > in the Windows FAQ for future new users!) > > Cheers, > Brett > > PS To the creators of and contributors to the OpenVPN project, I'd like to > say I love it! Great work! Let me know if I could be of any help to the > project... > > > -----Original Message----- > From: James Yonan > To: Kristof Hardy; openvpn-users@xxxxxxxxxxxxxxxxxxxxx > Sent: 8/7/2003 6:10 AM > Subject: Re: [Openvpn-users] openvpn 1.5b4 on win32 > > Kristof Hardy <kristof.hardy@xxxxxxxxxxxxxxx> said: > > > Hi, > > > > I've been testing the windows port a few times now, and it works very > > good. From the road warrior I can ping my OpenVPN 1.5b4 Linux box to > > wich I'm connected (and vice versa). So that's perfect. > > > > But how can I reach my network behind this Linux gateway? (is it just > a > > routing problem at my side (I'll punch myself and go after it if > that's > > the case :)) or is there anything I've missed?) > > > > Do I have to use the Ethernet bridging part (in the howto) to > establish > > the connection to my subnet? > > Yes, ethernet bridging is one possibility. There is also proxy ARP > which I > have not used personally, but others on this list have (HOWTO anyone?) > > You could also use IP routing to make this work: > > The road warrior would need a route command that routes all IP addresses > of > the remote subnet into the TAP-Win32 adapter (the route command is > usually > implemented in an --up script) Normally you don't also need a special > route > on the linux end of the connection if the linux box is also a gateway > for the > subnet. Make sure to use a different subnet for the virtual tap LAN > than you > do for the physical ethernet, and make sure the tap network/subnet > matches on > both ends of the connection. > > If you are bridging, you would do just the opposite, i.e. use the exact > same > subnet on the tap LAN as on the physical ethernet. > > Some people prefer bridging because it also passes broadcasts over the > VPN, > which makes it easy to do samba/windows browsing and file sharing. > > Others avoid bridging for the same reason -- passing broadcast traffic > eats up > limited VPN bandwidth and doesn't scale well. I personally use bridging > when > I work from my laptop at WiFi cafes, and I find that the broadcast > traffic is > not a problem when connecting to a small subnet. > > James > > > > ------------------------------------------------------- > This SF.Net email sponsored by: Free pre-built ASP.NET sites including > Data Reports, E-commerce, Portals, and Forums are available now. > Download today and enter to win an XBOX or Visual Studio .NET. > http://aspnet.click-url.com/go/psa00100003ave/direct;at.aspnet_072303_01 > /01 > _______________________________________________ > Openvpn-users mailing list > Openvpn-users@xxxxxxxxxxxxxxxxxxxxx > https://lists.sourceforge.net/lists/listinfo/openvpn-users > > > ------------------------------------------------------- > This SF.Net email sponsored by: Free pre-built ASP.NET sites including > Data Reports, E-commerce, Portals, and Forums are available now. > Download today and enter to win an XBOX or Visual Studio .NET. > http://aspnet.click-url.com/go/psa00100003ave/direct;at.aspnet_072303_01/01 > _______________________________________________ > Openvpn-users mailing list > Openvpn-users@xxxxxxxxxxxxxxxxxxxxx > https://lists.sourceforge.net/lists/listinfo/openvpn-users > -- ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users |