Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Location: United States of America and damn proud of it!
Distribution: Windows 10 prior Red Hat User
Posts: 473
Rep:
Creating Secure SMB Connections
Hello,
Does anyone know if it's possible to create a LAN that allows for creating an encrypted session for SMB clients connecting to a SMB server? I tried PuTTY but that is only for a shell session.
What I would like to know is if it's possible to set up a secure session from all clients in a lan communicating to a Linux file server? I guess kind of like a SSL for a lan. Any ideas? Thanks.
Location: United States of America and damn proud of it!
Distribution: Windows 10 prior Red Hat User
Posts: 473
Original Poster
Rep:
Hi cookeman,
When you say PGP, do you mean Pretty Good Privacy or something else? If so, what type of software would be supported and is it free?
Second, I see you live in Groton, I'm joining the Navy and I'll be stationed in Groton for 2 years while I attend school at Sub school. Are you in the service too?
What I would like to know is if it's possible to set up a secure session from all clients in a lan communicating to a Linux file server? I guess kind of like a SSL for a lan. Any ideas? Thanks.
Normal IP traffic is not encrypted. Windows 2000 does support using IPSec for secure LAN traffic, but I don't know how this would work with Linux clients. Anybody? Interesting question.
More basic, why do you want to secure your lan traffic? How you answer this question can determine your alternatives.
Location: United States of America and damn proud of it!
Distribution: Windows 10 prior Red Hat User
Posts: 473
Original Poster
Rep:
Hi baz,
Well, it's not really that I want to secure my Lan traffic, I was just posing the question to see it it's possible to do so is all. Reason being is because I may at some point in the near future have my server located off site and want my clients to connect to it. Since they would be connecting and downloading/uploading data, I would want it to be a secure connection at that point, but that would be going over a WAN connection at that point, and that would have to be addressed differently.
Reason being is because I may at some point in the near future have my server located off site and want my clients to connect to it. Since they would be connecting and downloading/uploading data, I would want it to be a secure connection at that point, but that would be going over a WAN connection at that point, and that would have to be addressed differently.
This is usually addressed by creating VPN connections, though there are other ways. For example, I access my home LAN from school. I use puTTY to open a SSH connection to a linux server behind my soho router, which works as a good hardware firewall. SSH has the ability to port-forward other traffic, so I access my Windows boxes securely. Kind of a poor-man's quick and dirty "vpn." But for any kind of serious client connections, you should look into VPN software.
I got it installed, however, I guess I wasn't clear about what this software does. What I would like to do is create a secure session for all communication from my windows box to my Linux server, including all file transfers from the server to the clients. All that I can see that it has done is allow me to open a shell from Windows. I think I am not using the right software.
I copied this from the other thread. I don't want to get spread too thin.
Look into a program called "WinSCP." This will open up a secure session on your linux box from a Windows client, with a nice graphical file manager for secure file transfers. Look here for more info.
Heck....if all you want to do is use SCP then go grab the ssh.com client. It will do a terminal session and the second desktop icon if for ssh file transfer:
Location: United States of America and damn proud of it!
Distribution: Windows 10 prior Red Hat User
Posts: 473
Original Poster
Rep:
Hi Baz,
Got a question for you. . Traditionally, from what I know about VPN's they're only used for dial up connections. If I have a broadband cable connection, can I still set up a VPN with this software you're referring to?
Second, is there any open source VPN software that I could get reasonably inexpensive?
Scott,
VPN is preferred over a fast connection. They are used all the time for commuters with broadband at home and travel business in hotels and remote sites. Win2K server supports VPN server through PPTP and L2TP. There is a Linux version at www.poptop.org for windows clients and they link to an L2TP version. For linux/BSD you have FreeS/WAN at www.freeswan.org. It seems to have limited Windoze support.
If you have Win2K server and Windows workstation you can set up the VPN as it is already under the hood. FreeS/WAN is free for linux and BSD.
Location: United States of America and damn proud of it!
Distribution: Windows 10 prior Red Hat User
Posts: 473
Original Poster
Rep:
K Thanks a lot Justin!! I haven't had the time to really check into it in too much detail , but do you know if I'll be able to set it up transparently for my Windows users? What I mean is, I have network drives setup from the Windows machine to Linux. When I move the Linux box off site, is it possible to set it up so the users on Windows will not even sense any difference?
Yes you can do this. Depending on the link speed between sites. You can have a linux box at each site handling the vpn and perform the gateway function and it can be very transparent to the users.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.