LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Search this Thread
Old 10-14-2012, 12:24 PM   #1
chridazi
LQ Newbie
 
Registered: Oct 2012
Posts: 2

Rep: Reputation: Disabled
StrongSWAN L2TP IPSec VPN with PSK and DynDNS configuration


Hello,

I'm trying to set up a VPN server with StrongSWAN on Kubuntu 12.04. This should be used only as a fileserver and provide different clients with changing IP addresses (DSL) access to samba shares. The server (intern IP 192.168.178.2) is behind a NAT router (Fritz!Box FON WLAN 7390, intern IP 192.168.178.1) which also connects via DSL to the internet. DynDNS is configured on the router. It should work with preshared keys. The clients are mostly Win7 or WinXP, installation of additional software should be avoid. It would be neccesary that after a succesfull connection the server and all the clients are able to see each other in the Windows network enviroment. The clients and the server should get IP addresses in an own subnet (192.168.100.0/24). There are many instructions about StrongSWAN in the internet, but only for certificates or fixed IPs. If there's anyone who has such a configuration working or knows a website where this is explained exactly I would be thankful for a little bit help.

Hope for some answers.
 
Old 10-14-2012, 12:46 PM   #2
mmheera
Member
 
Registered: Oct 2012
Location: Germany
Distribution: Ubuntu, Debian, Fedora,Windows 7
Posts: 107

Rep: Reputation: 11
Here is a link, unfortunately in German language!But the config file is in english. May be you can try google translate to understand further.

http://layer9.wordpress.com/2010/07/...-wlan-7270-v3/

Thanks!
 
Old 10-16-2012, 12:16 PM   #3
chridazi
LQ Newbie
 
Registered: Oct 2012
Posts: 2

Original Poster
Rep: Reputation: Disabled
Hello!
Thanks for your reply. Translation into german isn't a problem for me. But as I know you have to install the software "FRITZ!Box-Fernzugang" on client side to make it work. I'm looking for a solution without installing any software on the client (especially Win7). Maybe you know a way how to configure a connection with Windows onboard tools to a FRITZ!-VPN?
 
Old 10-17-2012, 05:41 AM   #4
mmheera
Member
 
Registered: Oct 2012
Location: Germany
Distribution: Ubuntu, Debian, Fedora,Windows 7
Posts: 107

Rep: Reputation: 11
Sadly, I don't know any way to connect to a Fritzbox without the client software. What I can find in Internet that a few people have been successful connection to Fritzbox without using the client. The other possibility is with Shrew Soft VPN Connect.
http://www.avm.de/de/Service/Service...taet/15729.php

If I have understood your situation correctly, I don't see any possible solution that can satisfy all your requirements. As for the strongswan there is no way to escape using certificates. Because the connecting user authenticates using Username/Password using MSCHAPv2, but the gateway needs to be authenticated in advance using Certificates.

http://wiki.strongswan.org/projects/.../wiki/Windows7

For assigning static IP to the clients you may use ipsec pool tool:

https://lists.strongswan.org/piperma...st/008034.html

I guess you need to come to a compromise for a possible solution. If you don't want to get into vpn stuffs, you can also think of creating a NAS server and sharing it securely for the user or may be this is also interesting:

http://freetz.org/wiki/packages/samba
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: IPSEC split tunneling VPN with Mac OSX and Strongswan 5 on Centos/RHEL 6 LXer Syndicated Linux News 0 09-01-2012 09:11 PM
LXer: Iphone/Ipad/Mac OSX IPSEC VPN with Strongswan 5 on Centos/RHEL 6 LXer Syndicated Linux News 0 08-24-2012 02:20 AM
Problem with setting L2TP VPN in kubuntu using strongswan AmirGooran Linux - Networking 0 05-11-2012 03:27 PM
how connect to a Windows server using VPN l2TP/IPSEC PSK? YourPadre Slackware 0 05-15-2011 11:07 PM
IPsec/L2TP VPN question IPsecLearner Linux - Networking 3 04-19-2005 11:32 AM


All times are GMT -5. The time now is 06:30 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration