I'm looking for a way to tunnel the internet connection of my Ubuntu VPN server to the remote client.The server is running Ubuntu Server 9.04 64-bit, and has a fully functional installation of Poptop and Squid. Is there a way I can get internet requests from the VPN client to tunnel over the VPN and be connected through Squid? I'd think this would be a iptables thing, but I'm not sure.
View 5 RepliesI have a local computer (local), and remote computer (remote) behind of remote server (server). Also, I have user access to all of these 3 machines. Now, I want mount some directory, located at remote, to my local mount-point via sshfs. How should I setup my local sshfs and what should be done on server to make this mounting?
I'm stuck with ssh tunneling because the default method for tunneling requires root access while WinSCP somehow could do this with only user access (the tunnel server could be configured there in 'tunnel' panel).
I am a newcommer to Centos. I should connect to internet via a pptp vpn connection. I created the connection in "network connections". In other distrows I could connect to created pptp vpn connection simply by clicking on network-manager-applet and selecting the connection, but there is no network-manager-applet in Centos. Is there any way to connect to the vpn connection I created or I should go to do it by manually editing config files?
View 3 Replies View RelatedI've setup a PPTP server on my ubuntu 11.04. PPTP settings seem to be OK and I can connect to my machine from a Windows PPTP client. But then I dont have access to Internet from my Windows machine. Authentication is successful and I can see GRE traffic to my PPTP interface on my Ubuntu, but I can't reach any host (including Internet) after my Ubuntu machine. I suspect this is a routing or NATing issue.
View 1 Replies View RelatedI'm running an own PPTP Server, but I can't get it to access the internet. All my PCs at home run in the 192.168.0.0/24 net, the PPTP Server has local IP192.168.0.5 and remote IP 192.168.0.80-99. The router to the internet is at 192.168.0.1, and the IP of eth0 on the machine where the pptpd runs is 192.168.0.4. I want to be able to connect to the internet trough that VPN and access my local LAN servers (which works fine so far). I can ping internet and local IPs successfully, but can not access them with a browser, or connect to them in any other way. I have 'accepted' all in/output and forwards.
I am running a Squid proxy on the same machine, and if I do:
iptables -t nat -A PREROUTING -j REDIRECT -i ppp0 -s 192.168.0.0/24 -p tcp --dport 80 --to-port 3128
I can access the internet through Squid, but of course Jabber/ICQ etc. Won't work then because it just refers port 80. But I want the PPTP Clients to connect to the internet directly, if I don't use that rule it's not possible to load any pages. But pinging works all the time. DNS is also working fine, but I can't even access webpages via IP directly. How can I allow the PPTP IPs 192.168.0.80-99 to get direct access to the Internet with Iptables?
I have started a newly started a VPN-service with some friends and are offering both OpenVPN and PPTP-vpn.The OpenVPN works perfectly, but we have some problem with the PPTP.It is possible to connect to the VPN, but once connected you can't get any type of access to the outside world ( the interner ).I've googled (Ok, not I, but the tech-guy has) and havn't found any solution so therefor we try here.We are running Debian 5.0 on a XEN VPS.On the machines we've tested OpenVPN works like a charm.
View 12 Replies View Relatedi have installed Linux i.e ubuntu 10.04 on my PC in which i have installed pptp client and able to connect it successfully but problem is that it unable to browse internet. in windows it works fine.
View 1 Replies View RelatedI am trying to connect to a PPTP VPN at work, and I cannot accomplish that. Both server and client are using Ubuntu 10.10.
Code:
Jan 7 11:32:26 multicore-dev03 NetworkManager: <info> Starting VPN service 'org.freedesktop.NetworkManager.pptp'...
[code]....
i have a VPN server PPTPD on Centos 5.3
eth0: 62.2.2.x (public on the internet)
GW: 62.2.2.1 (cisco router)
i want to configure my ppptp server to allow users access internet with their own public ips of class 62.2.3.0 62.2.4.0 62.2.5.0
every time i configure my server all users can get thier IPs but they only go out with my server IP same as NAT not routing.
can you show me the proper configuration to make my users connect with public IP and have internet access. use specific DNS ( i did this but some users can not brows by DNS)
is there any way to specify an expired date for each pptp user.
I'm trying to connect to a Microsoft ISA PPTP server from my Linux box. The box I'm connecting from is itself a router. I have no problem connecting a Windows XP machine to the VPN via this machine. This is fine, but I would rather connect via the Linux machine, giving me far more advanced routing options (i.e. no to send every packet from the XP box completely unnecessarily via the PPTP tunnel). The Linux router is running Debian Lenny.
I've checked iptables. There were initially some issues. I've fixed those.
Invoking pppd from the console, I can see that authentication succeeds, but then some negotiation goes wrong and the server terminates the connection. Here's the output from pppd, with the more sensitive stuff removed:
Code:
<hostname>:~# pppd call <peer> nodetach debug
using channel 19
Using interface ppp0
Connect: ppp0 <--> /dev/pts/2
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0xe3e45f75> <pcomp> <accomp>]
code....
Currently I have the following configuration on pptpd.conf which allows 250 connections :localip 192.168.10.1remoteip 192.168.10.2-254connections 250I would like to increase the connections to 500 , so I need more remoteip , what is the correct format for defining more remoteip
View 2 Replies View RelatedI've searched the forums (250 thread limit) for a fix on this, but all the questions seem unanswered or unrelated. My situation is this: I'm running Ubuntu x64 10.10 'Maverick'. I have a cablemodem connection for my Internet access. I have home network running on DD-WRT with the dreadful Linksys WRT54G series router.
My DD-WRT router is 192.168.1.1, subnet 255.255.255.0.
My Linux box is 192.168.1.61, subnet 255.255.255.0.
I have a VyprVPN connection set up successfully on Linux. Mostly everything works great, speed's fine, latency is what I expect it to be. Except... I also run an SSH server to remotely admin the box at port 22, an Apache server running over SSL at port 7001, and a Transmission web client at port 7002 (only secured by basic HTTP realms auth). All of these things worked before I got the VPN working, I'm of course using NAT at the DD-WRT router.
The endresult I am looking for, is to have the security and protection of the VPN (even if it's only perceived) for everything I do on this machine -- EXCEPT on Apache, the Transmission web panel, and the SSH server, which I want to access from the outside world. I have no firewalls running or configured, not even iptables, not even the SPI firewall on DD-WRT. All connections to the aforementioned services from the outside world timeout coming in to the Linux box. They all work from inside my home network (182.168.1.0/24). In case it's needed, he's my routing:
[Code]....
I need to understand what is happening with my VPN , I manage the Firewall server that have install POPTOP ($Id: pptpd.conf,v 1.10) for VPN conecctions. Actually only 3 users are using the service, about 1 month ago, I have problems with connection and service that consistently falls, sometimes it can get 1 hour of connection and then falls,My Server is on Centos , Kernell 2.6.18-53.el5PAE
This is my File on /etc/pptpd.conf
Code:
option /etc/ppp/options.pptpd
logwtmp
localip 192.168.10.1
remoteip 192.168.10.230-250
This is my File on /etc/ppp/options.pptpd
Code:
name servername
name pptpd
auth
refuse-pap
[code]....
I try use Squid as my proxy server. When I set my firefox to use my proxy server (squid), all is ok, but when I set firefox on another pc (from internet, not local network), all request returned time out turn off my router and connect PC to internet (without router), but still don't work.In iptables is all ok, I think. Where is problem? I think, It isn't problem with squid (because squid don't show error page), but I don't know how fix it
iptables:
Code:
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Edit: SSH from remote pc work fine.
I have to configure squid server which will have two internet connections on two separate lan cards and both will run simultaneously.I know how to configure squid server with one internet connection
View 4 Replies View Relatedis this possible on 2 Linux boxes will act as a INTERNET Firewall + Filtering: 1st PC = CENTOS 5.5 functions as a firewall using iptables with two NICS 1=ETH0 connected to internet with a public ip and 1=ETH1 with ip address of 10.0.0.1 connected to the 2nd PC Centos 5.5 with squid/dansguardian with ip address of 10.0.0.2
2nd PC = Centos 5.5 functions as a squid + dansguardian internet filtering with 2 NICS 1=ETH0 with ip address of 10.0.0.2 connected to the ETH1 of the 1st PC with ip address of 10.0.0.1 and 2nd ETH1=connected to LAN (172.16.1.0/24)
does this make sense? this might be confusing but I just want to try this, to protect incoming ssh from our previous Sys admins who intended to enter the LAN 172.16.1.0/24 network. And also to confuse them that they have to pass through 10.0.0.1 - 2.
i have the following ip assignments
fedora (iptables)
eth0 -private :192.168.1.1
eth1 -public : 186.117.50.6
squid proxy
192.168.1.10:3128
my clients range
192.168.2.0/24
how can i make my clients to browse internet only from proxy server my network is NAT 'ed. Please specify a iptable rule to allow internet access for my clients to browse ONLY if they come through proxy server.
since installing opensuse 11.2 KDE, is that I can connect to the local resources when I'm not connected via the pptp vpn to the Internet but as soon as I establish an Internet connection, I cannot. Under Windows and other distros I've tried, this has never been an issue, usually I can connect to either local or Internet resources, interchangeably. In a nutshell, I don't know how to troubleshoot this.
View 9 Replies View RelatedI recently installed Kubuntu 10.10 on my machine, and I configured the PPTP VPN connection through which I connect to the internet. I can successfully connect, but it works really slowly. Slower than it does on Windows 7 on the same computer, with the same settings for the PPTP dialer. In about 20 minutes after I connect, the connection fails and even the modem restarts itself. I tried setting the MTU for the pptp connection to 1400 (I checked, and 1372 is the maximum value before the packets start to fragment + 28 bytes for the IP/ICMP headers), but nothing seems to help.
View 3 Replies View Relatedeverything works fine, clients can connect to the vpn server with no problems and they can ping local machines! but no internet access through the vpn connection unless i uncheck the default gateway option on my client machine which is not what i want. I want my clients to get my server's ip address. my server is behind a router (router's ip : 192.168.0.1 | server's local ip: 192.168.0.100) so i used localip 192.168.0.100 & remoteip 192.168.0.234-238 in pptpd.conf. it think there is something wrong with routing or firewall rules, because it seems that the DNS resolution works .. when i try to browse a website my browser says "Waiting for xxxxx.com..." and it stays on that stage forever ! the funny part is that google.com works fine (don't know how).
p.s :
* I have already opened the port in on my router. I even tried it locally to make sure that the router is not the problem here. * already added ms-dns 208.67.222.222 / ms-dns 208.67.220.220 to pptpd-options. (found another guide that suggested to do this, before adding these two lines even dns resolution was not working.)
I am trying to setup a version of OzymanDNS but am not quite sure I am understanding part of the instructions found here.My domain/website is hosted with a web hosting company, using their name servers. I have added a sub domain [URL], using an A record to send any requests for [URL] to my home IP address, where I have a server running. Do I need to also add the code below to my server at home which has BIND installed or are the instructions expecting that I have full control of the main name server already?
Code:
tunnel.example.com. IN NS www.example.com.
www.example.com. IN A 123.123.123.123
I want to be able to SSH into my computer that I can't expose port 22 on. I've tried the ssh -R ... several times, but can't manage to make it work.I have my home computer (want to SSH into), server (can SSH into), and some computer I want to SSH from.Do I need to install the sshd on the machine I want to SSH into? What are the commands I need to enter to forward from my server to my home computer?
View 1 Replies View RelatedI am trying to tunnel through my college's free AP so I can get access to protocols outside of http and https. The school has an in-browser DNS redirect until you log in.The output of "cat /proc/version" on the server OS is "Linux version 2.6.35-27-generic (buildd@palmer) (gcc version 4.4.5 (Ubuntu/Linar o 4.4.4-14ubuntu5) ) #48-Ubuntu SMP Tue Feb 22 20:25:29 UTC 2011" The client OS is Windows 7. What I have done so far is use Proxy Cap to redirect applications to a Putty tunnel connected to the server. Eventually I want to tunnel that SSH connection through my school's firewall, so that I can keep encryption and have a reasonable amount of ease with setup.
I am not particularly educated on the inner workings of the DNS redirecting so I was not sure what to search for. My attempts to connect Firefox over normal http proxies failed and since all ports are blocked besides http and https I didn't attempt any socks or SSH. I have also tried simply hosting the SSH server on http ports with little success. I hope that I can do this without having to purchase a domain, but that's starting to seem like that won't be the case.
I have been ssh tunneling, which works great.I can browse the internet by simply tunneling my traffic through my SSH server.the following command: ssh -ND 9999 username at myserver.i cant postlinks.is all I have type, and I can connect to a SOCKS proxy server on localhost:9999.My problem is that I have an application that only supports HTTP proxies.Is there any way I can get it tunneling over the socks proxy?
View 4 Replies View RelatedI am trying to use the ssh reverse tunneling through the command
Code:
ssh -l login -p port <ip address> -R <remote port>:<local Ip>:<local port>
In order to enable some one in the remote host to connect my machine. through the command
Code:
ssh 127.0.0.1:<remote port>
However when I try to execute the first ssh command above I got the warnning
Code:
Warinning: remote port forwarding failed for listen port <remote port>
The problem always happens when the remote host I have tried to connect is my Fedora 14 machine. I can do that when using an Ubuntu as the remote host.
I am useing bshellz and i want to know how do i setup ssh tunneling in firefox when i am surfing the web.I newbie when it come to ssh tunneling.
View 3 Replies View RelatedIn windows if I want to do split tunneling, I just uncheck the Use as Default Gateway Box as seen here URL...In Ubuntu, I went to my VPN connection, IPv4 settings, routes..., checked "Use this connection only for resources on its network".And I could no longer ssh into machines on campus.
View 1 Replies View RelatedI want to tunnel X apps to windows with PuTTY. I have the following in my sshd_config:
Code:
X11Forwarding yes
X11DisplayOffset 10
[code]....
I am a linux beginner and dont know that much about networks! I have access to a linux VM. The machine is remote and i access via putty. If i can access this machine via SSH and putty, is there any reason why i should not be able to use ssh tunnelling to connect to a vnc server?
I don't know the details of the server and what firewall is set up but i believe that tunnelling uses port forwarding over the ssh connection that is already set up. Where does the port forwarding actually occur? At the actual linux VM or on the router the VM is connected to?
When I try to create a network tunnel, I get ioctl: no such device returned by the terminal. Which modules do I need to ad with insmod to enable tunneling?
View 2 Replies View Related