LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Search this Thread
Old 07-19-2010, 06:26 AM   #1
dlugasx
Member
 
Registered: Dec 2008
Location: Germany/Poland
Distribution: CentOS / Debian / Solaris / RedHat
Posts: 242

Rep: Reputation: 18
VPN - basic knowledge / info about typical VPN configuration


Hi Gurus,

in my network all of my servers based on RedHat 5 and Centos 5.
Right now my boss told me that I have to connect two offices in two diffrent countries using VPN: Office Berlin and Office Hamburg.

In both offices we have huge local networks but in Office Berlin we have more services like (FileServer (samba), Database(oracle), some groupware).Lets say that Berlin is headquater.

How should I configure the VPN that people from both offices would be visible in LAN ? Is it possible ?

What kind of server / clients should I use ?

How to share for example fileserver based on samba thru VPN ?
Will it be visible in the LAN ? Or should I prepare special configuration ?

Would be great if somebody can explain me how its working in his network. Till now I have used only ssh to communicate between offices.


dlugasx
 
Old 07-19-2010, 07:26 AM   #2
marozsas
Senior Member
 
Registered: Dec 2005
Location: Campinas/SP - Brazil
Distribution: SuSE, RHEL, Fedora, Ubuntu
Posts: 1,393
Blog Entries: 1

Rep: Reputation: 63
Hi !

For this scenario I would recommend a gateway with VPN capabilities built-in.
You need one VPN gateway in each office. In each office the local network must use a different network number (I mean, 192.168.1.0/24 for Berlin, 192.168.2.0/24 for Hamburg - the real numbers doesn't matter, they just need to be different).

With this kind of setup, one in Berlin can open a windows share in Hamburg just using a network resource like "\\192.168.2.1\share". Other services will work as expected, you just need to use the IP of the server of the remote office.

AFAIK, application that rely on broadcast/multicast of IP does not work in this setup. For instance, you need a DHCP server for each office. Auto discovery of devices and services in several programs will not work too.

You don't need to configure anything in any server or client in the local networks. This is very similar to the regular routing. Think on VPN gateway as a router that knows the local network in the remote end, routing packets from/to in a secure way. So the communication between the branchs are very "transparent" for the computers and servers on the local network.

I use for this setup an opensource software-based gateway named Smoothwall (www.smoothwall.org) that I think is very good. It has the Inter-Office VPN feature built-in.

They have a commercial version too, with several support plans that your company may appreciate (like 24h support, phone support, etc). There is a appliance too. Please, check www.smoothwall.com
I never used the commercial version, don't take my advice as a strong recommendation, just as a suggestion based on what I know of the software-based opensource/community version.

The market is full of similar solutions, most are appliances. Names that come to my mind are SonicWall, Watchguard, Check Point Firewall One, among others.

Last edited by marozsas; 07-19-2010 at 07:27 AM.
 
Old 07-19-2010, 08:01 AM   #3
dlugasx
Member
 
Registered: Dec 2008
Location: Germany/Poland
Distribution: CentOS / Debian / Solaris / RedHat
Posts: 242

Original Poster
Rep: Reputation: 18
Solved

Quote:
Originally Posted by marozsas View Post
Hi !

For this scenario I would recommend a gateway with VPN capabilities built-in.
You need one VPN gateway in each office. In each office the local network must use a different network number (I mean, 192.168.1.0/24 for Berlin, 192.168.2.0/24 for Hamburg - the real numbers doesn't matter, they just need to be different).

With this kind of setup, one in Berlin can open a windows share in Hamburg just using a network resource like "\\192.168.2.1\share". Other services will work as expected, you just need to use the IP of the server of the remote office.

AFAIK, application that rely on broadcast/multicast of IP does not work in this setup. For instance, you need a DHCP server for each office. Auto discovery of devices and services in several programs will not work too.

You don't need to configure anything in any server or client in the local networks. This is very similar to the regular routing. Think on VPN gateway as a router that knows the local network in the remote end, routing packets from/to in a secure way. So the communication between the branchs are very "transparent" for the computers and servers on the local network.

I use for this setup an opensource software-based gateway named Smoothwall (www.smoothwall.org) that I think is very good. It has the Inter-Office VPN feature built-in.

They have a commercial version too, with several support plans that your company may appreciate (like 24h support, phone support, etc). There is a appliance too. Please, check www.smoothwall.com
I never used the commercial version, don't take my advice as a strong recommendation, just as a suggestion based on what I know of the software-based opensource/community version.

The market is full of similar solutions, most are appliances. Names that come to my mind are SonicWall, Watchguard, Check Point Firewall One, among others.
Thanks for nice explanations! This what I was looking for

Thank You very much
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Configure Linux VPN Server for a Windows VPN Client xbaez Linux - Networking 4 04-28-2006 03:29 PM
RHEL VPN info MrJoshua Linux - Enterprise 1 06-15-2005 12:42 PM
Basic VPN Questions grim1234 Linux - Networking 2 01-27-2005 04:29 PM
How do i connect Ciscos VPN client to Checkpoint VPN server Klas Linux - Networking 1 11-29-2003 08:00 AM


All times are GMT -5. The time now is 03:21 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration