Hi List,
I'd like to be able to create VPN connections on my laptop to connect to client locations and I was wondering if someone could point me in the right direction for this information. I've checked on the wiki, but didn't find anything.
Info appreciated...
On Tue, Jul 12, 2011, Mark Weaver wrote:
I'd like to be able to create VPN connections on my laptop to connect to client locations and I was wondering if someone could point me in the right direction for this information. I've checked on the wiki, but didn't find anything.
We use OpenVPN for pretty much everything other than iPhone and iPad which don't grok OpenVPN.
OpenVPN works quite nicely with Linux, Windows, and OS X.
Bill
On Jul 12, 2011, at 7:32 PM, Bill Campbell wrote:
On Tue, Jul 12, 2011, Mark Weaver wrote:
I'd like to be able to create VPN connections on my laptop to connect to client locations and I was wondering if someone could point me in the right direction for this information. I've checked on the wiki, but didn't find anything.
We use OpenVPN for pretty much everything other than iPhone and iPad which don't grok OpenVPN.
OpenVPN works quite nicely with Linux, Windows, and OS X.
Bill
On a side note, I use this for iOS and OpenVPN:
Works well.
Tommy Craddock Systems Administrator tommy@hivelocity.net Hivelocity.Net Impressive Support
On 7/12/2011 9:31 PM, Tommy E Craddock Jr wrote:
On Jul 12, 2011, at 7:32 PM, Bill Campbell wrote:
On Tue, Jul 12, 2011, Mark Weaver wrote:
I'd like to be able to create VPN connections on my laptop to connect to client locations and I was wondering if someone could point me in the right direction for this information. I've checked on the wiki, but didn't find anything.
We use OpenVPN for pretty much everything other than iPhone and iPad which don't grok OpenVPN.
OpenVPN works quite nicely with Linux, Windows, and OS X.
Bill
On a side note, I use this for iOS and OpenVPN:
http://www.guizmovpn.com/Works well.
Tommy Craddock
I apologize for this being a bit off-topic, and I ask this of some clients when they want to access their Citrix servers from their iPhones, but why would one want to do something of this nature on a device that you'd literally need binoculars to be able to see the screen?
For a short time I dabbled with an SSH app on my Droid X so that I could connect to and interact with Linux servers that I've deployed, but found it all but impossible to see the screen thus rendering the application nothing more than something taking up space on my device. Now, it's a different story if the device is an iPad or Galaxy tablet device, but a phone?
On Jul 13, 2011, at 7:34 AM, Mark Weaver mweaver@compinfosystems.com wrote:
On 7/12/2011 9:31 PM, Tommy E Craddock Jr wrote:
On a side note, I use this for iOS and OpenVPN:
http://www.guizmovpn.com/Works well.
Tommy Craddock
I apologize for this being a bit off-topic, and I ask this of some clients when they want to access their Citrix servers from their iPhones, but why would one want to do something of this nature on a device that you'd literally need binoculars to be able to see the screen?
For a short time I dabbled with an SSH app on my Droid X so that I could connect to and interact with Linux servers that I've deployed, but found it all but impossible to see the screen thus rendering the application nothing more than something taking up space on my device. Now, it's a different story if the device is an iPad or Galaxy tablet device, but a phone?
--
I don't use an iPhone myself, just the iPad, so it's come in handy when on a friends/work mates wifi and wanting to check email, access content on home LAN etc. On rare occasion I use free wifi, will also use VPN for all traffic.
I also do the same with my R2D2 Droid ie connect thru VPN. I don't trust other peoples network too much. View most as the seedy part of town where I make sure my doors are locked when I park.
Most of the time tho, I just use Artoo's wifi hotspot for wifi access for the iPad and VPN traffic on the iPad.
Tommy C.
On 7/13/2011 8:09 AM, Tommy E Craddock Jr wrote:
On Jul 13, 2011, at 7:34 AM, Mark Weavermweaver@compinfosystems.com wrote:
On 7/12/2011 9:31 PM, Tommy E Craddock Jr wrote:
On a side note, I use this for iOS and OpenVPN:
http://www.guizmovpn.com/Works well.
Tommy Craddock
I apologize for this being a bit off-topic, and I ask this of some clients when they want to access their Citrix servers from their iPhones, but why would one want to do something of this nature on a device that you'd literally need binoculars to be able to see the screen?
For a short time I dabbled with an SSH app on my Droid X so that I could connect to and interact with Linux servers that I've deployed, but found it all but impossible to see the screen thus rendering the application nothing more than something taking up space on my device. Now, it's a different story if the device is an iPad or Galaxy tablet device, but a phone?
--
I don't use an iPhone myself, just the iPad, so it's come in handy when on a friends/work mates wifi and wanting to check email, access content on home LAN etc. On rare occasion I use free wifi, will also use VPN for all traffic.
I also do the same with my R2D2 Droid ie connect thru VPN. I don't trust other peoples network too much. View most as the seedy part of town where I make sure my doors are locked when I park.
Most of the time tho, I just use Artoo's wifi hotspot for wifi access for the iPad and VPN traffic on the iPad.
Tommy C.
now that makes sense.
On 07/13/2011 02:09 PM, Tommy E Craddock Jr wrote:
I also do the same with my R2D2 Droid ie connect thru VPN.
Would you mind sharing your CentOS IPSec configs? I got nowhere googling how to setup a L2TP/IPSec PSK VPN between my Nexus S and CentOS 5.6 (soon 6) box.
Thanks and regards, Patrick
On 7/13/11, Mark Weaver mweaver@compinfosystems.com wrote:
For a short time I dabbled with an SSH app on my Droid X so that I could connect to and interact with Linux servers that I've deployed, but found it all but impossible to see the screen thus rendering the application nothing more than something taking up space on my device. Now, it's a different story if the device is an iPad or Galaxy tablet device, but a phone?
Which was why I believe a phone with a 5" screen would be perfect for emergency remote administration in situations where we don't have (or for whatever reasons can't use) a proper laptop/netbook.
Unfortunately that pretty much limits the current options to the Dell Streak which I use with a small bluetooth keyboard that also has cursor keys.
Of course I only used it for SSH/CLI access since I don't normally use X for administration.
On 7/13/2011 2:49 PM, Emmanuel Noobadmin wrote:
On 7/13/11, Mark Weavermweaver@compinfosystems.com wrote:
For a short time I dabbled with an SSH app on my Droid X so that I could connect to and interact with Linux servers that I've deployed, but found it all but impossible to see the screen thus rendering the application nothing more than something taking up space on my device. Now, it's a different story if the device is an iPad or Galaxy tablet device, but a phone?
Which was why I believe a phone with a 5" screen would be perfect for emergency remote administration in situations where we don't have (or for whatever reasons can't use) a proper laptop/netbook.
Unfortunately that pretty much limits the current options to the Dell Streak which I use with a small bluetooth keyboard that also has cursor keys.
Of course I only used it for SSH/CLI access since I don't normally use X for administration.
makes my eyes ache just thinking about it. :)
On 7/14/11, Mark Weaver mweaver@compinfosystems.com wrote:
Of course I only used it for SSH/CLI access since I don't normally use X for administration.
makes my eyes ache just thinking about it. :)
The good thing about the Dell Streak is that despite the larger screen, it has a lower screen resolution at 800x480. although many reviewers seem to think it's a bad thing. This makes things look about 23% larger than on the Droid X and might just cross the line between pain in the eye to usable for you. :)
On 7/14/2011 12:17 AM, Emmanuel Noobadmin wrote:
On 7/14/11, Mark Weavermweaver@compinfosystems.com wrote:
Of course I only used it for SSH/CLI access since I don't normally use X for administration.
makes my eyes ache just thinking about it. :)
The good thing about the Dell Streak is that despite the larger screen, it has a lower screen resolution at 800x480. although many reviewers seem to think it's a bad thing. This makes things look about 23% larger than on the Droid X and might just cross the line between pain in the eye to usable for you. :)
that is one sweet little tablet and I'm seriously struggling with whether or not to place an order for one!
Emmanuel Noobadmin wrote:
On 7/13/11, Mark Weaver mweaver@compinfosystems.com wrote:
For a short time I dabbled with an SSH app on my Droid X so that I could connect to and interact with Linux servers that I've deployed, but found it all but impossible to see the screen thus rendering the application nothing more than something taking up space on my device. Now, it's a different story if the device is an iPad or Galaxy tablet device, but a phone?
Which was why I believe a phone with a 5" screen would be perfect for emergency remote administration in situations where we don't have (or for whatever reasons can't use) a proper laptop/netbook.
Unfortunately that pretty much limits the current options to the Dell Streak which I use with a small bluetooth keyboard that also has cursor keys.
Of course I only used it for SSH/CLI access since I don't normally use X for administration.
I use Android VNC on my HTC Wildfire and screen is panned/scrolled, not resized. You can setup some kind of VNC via SSH.
Ljubomir
On Tue, 12 Jul 2011, Bill Campbell wrote:
On Tue, Jul 12, 2011, Mark Weaver wrote:
I'd like to be able to create VPN connections on my laptop to connect to client locations and I was wondering if someone could point me in the right direction for this information. I've checked on the wiki, but didn't find anything.
We use OpenVPN for pretty much everything other than iPhone and iPad which don't grok OpenVPN.
OpenVPN works quite nicely with Linux, Windows, and OS X.
+1
On 07/12/11 4:26 PM, Mark Weaver wrote:
Hi List,
I'd like to be able to create VPN connections on my laptop to connect to client locations and I was wondering if someone could point me in the right direction for this information. I've checked on the wiki, but didn't find anything.
you would, of course, need a VPN server of some sort at the client locations. If there is a linux server at each site, they could host an OpenVPN service.
On 07/12/2011 08:06 PM, John R Pierce wrote:
On 07/12/11 4:26 PM, Mark Weaver wrote:
Hi List,I'd like to be able to create VPN connections on my laptop to connect to client locations and I was wondering if someone could point me in the right direction for this information. I've checked on the wiki, but didn't find anything.
you would, of course, need a VPN server of some sort at the client locations. If there is a linux server at each site, they could host an OpenVPN service.
perfect! thanks guys. That did the trick; I wasn't sure which packages I was looking for.
On 7/12/2011 8:06 PM, John R Pierce wrote:
On 07/12/11 4:26 PM, Mark Weaver wrote:
Hi List,I'd like to be able to create VPN connections on my laptop to connect to client locations and I was wondering if someone could point me in the right direction for this information. I've checked on the wiki, but didn't find anything.
you would, of course, need a VPN server of some sort at the client locations. If there is a linux server at each site, they could host an OpenVPN service.
Well, yes that's a given. I was a little preoccupied when I first posted so perhaps a bit unclear.
What I've attempting to do is make it possible for me to connect to clients' servers where RRAS service is already running using PPTP so that I can connect remotely while I'm running Linux on my laptop so I don't have to stop what I'm doing and boot Windows.
Last night after installing the necessary additional packages (NetworkManager VPN plugins) to make it possible to create a VPN connection using NetworkManager I can configure a VPN for use, but when I actually attempt to establish the connection it fails complaining about there not being a secret. I'll freely admit that as an IT consultant I've been away from Linux a bit too long and too deeply immersed in the Windows world due to client needs, but this one has me a bit puzzled.
On Wed, 13 Jul 2011, Mark Weaver wrote:
What I've attempting to do is make it possible for me to connect to clients' servers where RRAS service is already running using PPTP so that I can connect remotely while I'm running Linux on my laptop so I don't have to stop what I'm doing and boot Windows.
Does pptp and pptp-setup from EPEL get you to where you want to be?
jh
On Wed, 13 Jul 2011, John Hodrien wrote:
On Wed, 13 Jul 2011, Mark Weaver wrote:
What I've attempting to do is make it possible for me to connect to clients' servers where RRAS service is already running using PPTP so that I can connect remotely while I'm running Linux on my laptop so I don't have to stop what I'm doing and boot Windows.
Does pptp and pptp-setup from EPEL get you to where you want to be?
Sorry, that's just me being out of date and talking crap.
I've never got on with NetworkManager-pptp in the past, so have used the base pptp client instead along with my own startup scripts.
jh
On 7/13/2011 7:52 AM, John Hodrien wrote:
On Wed, 13 Jul 2011, John Hodrien wrote:
On Wed, 13 Jul 2011, Mark Weaver wrote:
What I've attempting to do is make it possible for me to connect to clients' servers where RRAS service is already running using PPTP so that I can connect remotely while I'm running Linux on my laptop so I don't have to stop what I'm doing and boot Windows.
Does pptp and pptp-setup from EPEL get you to where you want to be?
Sorry, that's just me being out of date and talking crap.
I've never got on with NetworkManager-pptp in the past, so have used the base pptp client instead along with my own startup scripts.
jh
understood. I've grown a bit lazy over the past few years which is why I'm looking at doing it with NetworkManager rather than doing things with commandline tools and scripts. Mostly for the ease of use and speed aspect of it, so I can get as much done on the fly as possible without getting distracted. I'd like to be able to use C6 as much as possible on my laptop. I feel so out of touch with Linux these days because of the overwhelming use of the windows platform for my clients.
I need to get back in touch with my inner penguin; I miss him, but by the same token I just don't have the ambition I once had to dabble and tinker which is why I was so utterly impressed when I loaded C6 on my laptop and wasn't required to jack into the network get my wireless working.
On 7/13/2011 7:51 AM, John Hodrien wrote:
On Wed, 13 Jul 2011, Mark Weaver wrote:
What I've attempting to do is make it possible for me to connect to clients' servers where RRAS service is already running using PPTP so that I can connect remotely while I'm running Linux on my laptop so I don't have to stop what I'm doing and boot Windows.
Does pptp and pptp-setup from EPEL get you to where you want to be?
jh
I have to say I'm a bit embarrassed, but I don't know if I have those packages installed; I will have to look.
On 07/13/2011 07:51 AM, John Hodrien wrote:
On Wed, 13 Jul 2011, Mark Weaver wrote:
What I've attempting to do is make it possible for me to connect to clients' servers where RRAS service is already running using PPTP so that I can connect remotely while I'm running Linux on my laptop so I don't have to stop what I'm doing and boot Windows.
Does pptp and pptp-setup from EPEL get you to where you want to be?
jh _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
It really has been a while for me doing this stuff so I'm going to have to eat a little crow here and ask: what is all of the following trying to tell me?
(tailing /var/log/messages when attempting to activate a pptp VPN connection to a windows server using NetworkManager_ ================================================================= Jul 13 20:55:21 defiant NetworkManager[1258]: <info> Starting VPN service 'org.freedesktop.NetworkManager.pptp'... Jul 13 20:55:21 defiant NetworkManager[1258]: <info> VPN service 'org.freedesktop.NetworkManager.pptp' started (org.freedesktop.NetworkManager.pptp), PID 3030 Jul 13 20:55:21 defiant NetworkManager[1258]: <info> VPN service 'org.freedesktop.NetworkManager.pptp' appeared, activating connections Jul 13 20:55:21 defiant NetworkManager[1258]: <info> VPN plugin state changed: 1 Jul 13 20:55:21 defiant NetworkManager[1258]: <info> VPN plugin state changed: 3 Jul 13 20:55:21 defiant NetworkManager[1258]: <info> VPN connection 'PECG' (Connect) reply received. Jul 13 20:55:21 defiant pppd[3033]: Warning: can't open options file /root/.ppprc: Permission denied Jul 13 20:55:21 defiant pppd[3033]: Plugin /usr/lib64/pppd/2.4.5/nm-pptp-pppd-plugin.so loaded. Jul 13 20:55:21 defiant pppd[3033]: pppd 2.4.5 started by root, uid 0 Jul 13 20:55:21 defiant pppd[3033]: Using interface ppp0 Jul 13 20:55:21 defiant pppd[3033]: Connect: ppp0 <--> /dev/pts/1 Jul 13 20:55:21 defiant pptp[3034]: nm-pptp-service-3030 log[main:pptp.c:314]: The synchronous pptp option is NOT activated Jul 13 20:55:21 defiant pptp[3042]: nm-pptp-service-3030 log[ctrlp_rep:pptp_ctrl.c:251]: Sent control packet type is 1 'Start-Control-Connection-Request' Jul 13 20:55:21 defiant pptp[3042]: nm-pptp-service-3030 log[ctrlp_disp:pptp_ctrl.c:739]: Received Start Control Connection Reply Jul 13 20:55:21 defiant pptp[3042]: nm-pptp-service-3030 log[ctrlp_disp:pptp_ctrl.c:773]: Client connection established. Jul 13 20:55:22 defiant pptp[3042]: nm-pptp-service-3030 log[ctrlp_rep:pptp_ctrl.c:251]: Sent control packet type is 7 'Outgoing-Call-Request' Jul 13 20:55:22 defiant pptp[3042]: nm-pptp-service-3030 log[ctrlp_disp:pptp_ctrl.c:858]: Received Outgoing Call Reply. Jul 13 20:55:22 defiant pptp[3042]: nm-pptp-service-3030 log[ctrlp_disp:pptp_ctrl.c:897]: Outgoing call established (call ID 0, peer's call ID 61749). Jul 13 20:55:22 defiant pptp[3042]: nm-pptp-service-3030 log[ctrlp_disp:pptp_ctrl.c:950]: PPTP_SET_LINK_INFO received from peer_callid 0 Jul 13 20:55:22 defiant pptp[3042]: nm-pptp-service-3030 log[ctrlp_disp:pptp_ctrl.c:953]: send_accm is 00000000, recv_accm is FFFFFFFF Jul 13 20:55:22 defiant pptp[3042]: nm-pptp-service-3030 warn[ctrlp_disp:pptp_ctrl.c:956]: Non-zero Async Control Character Maps are not supported! Jul 13 20:55:22 defiant pptp[3042]: nm-pptp-service-3030 log[ctrlp_disp:pptp_ctrl.c:950]: PPTP_SET_LINK_INFO received from peer_callid 0 Jul 13 20:55:22 defiant pptp[3042]: nm-pptp-service-3030 log[ctrlp_disp:pptp_ctrl.c:953]: send_accm is FFFFFFFF, recv_accm is FFFFFFFF Jul 13 20:55:22 defiant pptp[3042]: nm-pptp-service-3030 warn[ctrlp_disp:pptp_ctrl.c:956]: Non-zero Async Control Character Maps are not supported! Jul 13 20:55:22 defiant pppd[3033]: LCP terminated by peer (|M-^LT9^@<M-Mt^@^@^CM-.) Jul 13 20:55:22 defiant pptp[3042]: nm-pptp-service-3030 log[ctrlp_disp:pptp_ctrl.c:912]: Received Call Clear Request. Jul 13 20:55:25 defiant pppd[3033]: Connection terminated. Jul 13 20:55:25 defiant NetworkManager[1258]: <warn> VPN plugin failed: 1 Jul 13 20:55:25 defiant pppd[3033]: Modem hangup Jul 13 20:55:25 defiant pptp[3034]: nm-pptp-service-3030 warn[decaps_hdlc:pptp_gre.c:204]: short read (-1): Input/output error Jul 13 20:55:25 defiant pptp[3034]: nm-pptp-service-3030 warn[decaps_hdlc:pptp_gre.c:216]: pppd may have shutdown, see pppd log Jul 13 20:55:25 defiant pptp[3042]: nm-pptp-service-3030 log[callmgr_main:pptp_callmgr.c:234]: Closing connection (unhandled) Jul 13 20:55:25 defiant pptp[3042]: nm-pptp-service-3030 log[ctrlp_rep:pptp_ctrl.c:251]: Sent control packet type is 12 'Call-Clear-Request' Jul 13 20:55:25 defiant pptp[3042]: nm-pptp-service-3030 log[call_callback:pptp_callmgr.c:79]: Closing connection (call state) Jul 13 20:55:25 defiant NetworkManager[1258]: <warn> VPN plugin failed: 1 Jul 13 20:55:25 defiant pppd[3033]: Exit. Jul 13 20:55:25 defiant NetworkManager[1258]: <warn> VPN plugin failed: 1 Jul 13 20:55:25 defiant NetworkManager[1258]: <info> VPN plugin state changed: 6 Jul 13 20:55:25 defiant NetworkManager[1258]: <info> VPN plugin state change reason: 0 Jul 13 20:55:25 defiant NetworkManager[1258]: <warn> error disconnecting VPN: Could not process the request because no VPN connection was active.
Mark Weaver wrote:
It really has been a while for me doing this stuff so I'm going to have to eat a little crow here and ask: what is all of the following trying to tell me?
<snip>
My guess of the culprit would be: Non-zero Async Control Character Maps are not supported!
Also thing to investigate: Warning: can't open options file /root/.ppprc: Permission denied
Also try this from Ubuntu Forums:
Re: Can't connect to PPTP VPN What PPTP settings are you using? I've had this problem for a long time as well, although I did manage to find a combination that worked. Give it a try:
Tick - Refuse EAP - Allow Deflate compression - Allow BSD compression - Require MPPE encryption - Require 128 bit MPPE encryption - Enable stateful MPPE - Use peer DNS
Do not tick - Authenticate peer - Refuse CHAP - Refuse MS CHAP - Require MPPC encryption
Ljubomir
-
Bill Campbell -
Emmanuel Noobadmin -
John Hodrien -
John R Pierce -
Ljubomir Ljubojevic -
Mark Weaver -
Patrick Lists -
Paul Heinlein -
Tommy E Craddock Jr