The UK Home Automation Archive

Archive Home
Group Home
Search Archive


Advanced Search

The UKHA-ARCHIVE IS CEASING OPERATIONS 31 DEC 2024


[Message Prev][Message Next][Thread Prev][Thread Next][Message Index][Thread Index]

Re: Help with VPN setup..



Kevin,

I'm no expert but Ultimately a VPN is just another router that can be
used to route traffic across the internet.

Its pretty much up to the network admin whats get routed where through
the use of appropriate TCP/IP routes.

I have 3 family networks permanently VPN'd together: 192.168.1.0,
192.168.2.0 and 192.168.3.0 we all run a broadcom router with the DD-
WRT dirmware instead of the manufacturers (http://www.dd-wrt.com/dd-wrtv2/ddwrt.php
).

At my end I have routes setup to allow 192.168.3.0 to talk to
192.168.2.0 via 192.168.1.0 - you get the idea, this is a star wired
network.

In much the same way I could set up a VPN connection to the states
(ideally using openvpn whihc is supported by dd-wrt) and set up routes
for specific hosts rather than networks thus ensuring that all traffic
to these hosts goes via the vpn.

Many of the software VPNs will allow routing of LAN traffic in much
the same fashion, you would just setup static routes on your own
router to point certain hosts at the machine running the software vpn.

The trick is knowing the specific hosts that you want to forward.

Adrian

On 14 Jan 2008, at 15:49, Kevin Hawkins wrote:

> I have little experience with VPN so I'm just trying to find out if it
> is feasible. I have seen that split VPN is possible (and has security
> ramifications) but that seems to really route all VPN data to your
> other network and all internet/other data via your local WAN
> connection
> so doesn't typically support a configurable narrow range of internet
> destination addresses being forced over VPN. I guess an alternative
> might be to alter the default gateway of a device to point at a VPN'd
> PC. I am totally open at this stage on what VPN solution I would use .
> If your modified firmware could provide such a feature and would work
> with a US based VPN service provider, of which there are many, then
> I'd
> happily buy such a router too.
>
> Kevin
>
> Adrian Merwood wrote:
> >
> > Would this be Pandora by any chance?
> >
> > If so what VPN and what addresses because I want to do the same.
> >
> > I have a DD-WRT flashed buffalo router that currently uses
openvpn
> to
> > connect to 2 other uk routers which form a "family"
network.
> >
> > My main router has specific route entries that route hosts or
> subnets
> > to this router.
> >
> > Adrian
> >
> > On 13 Jan 2008, at 14:36, Kevin Hawkins wrote:
> >
> > > I would like to setup my intranet such that only traffic
that is
> sent
> > > to a specific IP destination range is sent over VPN. Ideally
I'd
> like
> > > to have a VPN capable (second) router handling this but I'm
not
> > > adverse
> > > to a PC software based solution. The device originating the
> traffic
> > > would not be able to have a client installed or any
configuration
> > > applied.
> > >
> > > Is this possible ?
> > >
> > > K
> > >
> > >
> > > --
> > > This message was scanned by ESVA and is believed to be
clean.
> > > Click here to report this message as spam.
> >
> > --
> > This message was scanned by ESVA and is believed to be clean.
> >
> > [Non-text portions of this message have been removed]
> >
> >
>
>
>
> --
> This message was scanned by ESVA and is believed to be clean.
> Click here to report this message as spam.


--
This message was scanned by ESVA and is believed to be clean.



[Non-text portions of this message have been removed]




UKHA_D Main Index | UKHA_D Thread Index | UKHA_D Home | Archives Home

Comments to the Webmaster are always welcomed, please use this contact form . Note that as this site is a mailing list archive, the Webmaster has no control over the contents of the messages. Comments about message content should be directed to the relevant mailing list.