LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 11-29-2016, 05:35 PM   #1
upnort
Senior Member
 
Registered: Oct 2014
Distribution: Slackware
Posts: 1,893

Rep: Reputation: 1161Reputation: 1161Reputation: 1161Reputation: 1161Reputation: 1161Reputation: 1161Reputation: 1161Reputation: 1161Reputation: 1161
Testing a Home PPTP VPN


Is there a way to test a home VPN from within the home?

I am configuring a VPN into my home network, I am testing PPTP as proof-of-concept and OpenVPN is next. My challenge is I am rural and do not have access to any nearby network or hotspot. I can only test by traveling into town.

My understanding is for the VPN to function the source and destination networks must be separated and on different routing.

I do not have a smart phone to create a local hotspot.

I have VLANs configured on my router as well as a guest wireless all on different subnets. Is that sufficient to test from inside the home?

A network switch is between my router and ISP. I can connect my laptop to the switch to bypass the router.

I have a second unused router too. Would that help?

Thanks.

Edit: I am using an Asus RT-AC66U with DD-WRT. I have a static public IP address assigned. I am configuring a VPN into my home network. I am not linking two different subnets at two different locations.

Last edited by upnort; 11-29-2016 at 09:24 PM.
 
Old 11-29-2016, 06:40 PM   #2
sundialsvcs
LQ Guru
 
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 10,574
Blog Entries: 4

Rep: Reputation: 3890Reputation: 3890Reputation: 3890Reputation: 3890Reputation: 3890Reputation: 3890Reputation: 3890Reputation: 3890Reputation: 3890Reputation: 3890Reputation: 3890
I would very frankly suggest that you skip PPTP and move right on to OpenVPN.

It would help a bit if you could tell us more about what is your intended network configuration. Are you primarily interested in being able to start an OpenVPN client on a computer somewhere, and to gain access to computers on your home network? Or are you linking two different subnets at two different locations, e.g. your home and your place of business?

Even within your house, you can connect to the public-facing address assigned to your router by your ISP. (Any number of "my IP" web sites will tell you what it is.) The traceroute command will confirm that the traffic does go out, then right back in.

When you connect to OpenVPN using a client program that's running directly on the computer in question, OpenVPN will assign a network address (usually in the 10.8.0.xx subnet (see the server directive). These are the addresses that are always used to refer to directly-connected clients, and to the server itself. Therefore it does not matter what the machine's IP-address is on the local network to which it is connected, since its OpenVPN traffic will never appear to come from that address: it will always come from its assigned 10.8.0.xx address.

IP address conflicts become an issue when OpenVPN is being used in the capacity of a traditional router, providing a secure link between two subnets. As is the case with all routing, secure or otherwise, the IP-address ranges in the various subnets must not overlap, and routing commands must be in place on each side to correctly route traffic to the appropriate gateway (virtual router). A convenient way to accomplish this is with static routes on the (physical) routers in question.

Last edited by sundialsvcs; 11-29-2016 at 06:44 PM.
 
1 members found this post helpful.
Old 11-29-2016, 07:00 PM   #3
upnort
Senior Member
 
Registered: Oct 2014
Distribution: Slackware
Posts: 1,893

Original Poster
Rep: Reputation: 1161Reputation: 1161Reputation: 1161Reputation: 1161Reputation: 1161Reputation: 1161Reputation: 1161Reputation: 1161Reputation: 1161
I am using an Asus RT-AC66U with DD-WRT. I have a static public IP address assigned. I am configuring a VPN into my home network. I am not linking two different subnets at two different locations.

Quote:
I would very frankly suggest that you skip PPTP and move right on to OpenVPN.
I am well aware of the security concerns. As I wrote in my original post, PPTP is proof-of-concept.

I need a starting point to know that I have something working. OpenVPN is a beast to configure and with no ability yet to test directly from within the home, I am stuck with traveling into town to test any configuration changes in the router. PPTP is proof-of-concept -- get something to work. Then I can work on OpenVPN.

Back to the topic -- is there a way to test a home VPN from within the home?
 
Old 11-29-2016, 07:49 PM   #4
sundialsvcs
LQ Guru
 
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 10,574
Blog Entries: 4

Rep: Reputation: 3890Reputation: 3890Reputation: 3890Reputation: 3890Reputation: 3890Reputation: 3890Reputation: 3890Reputation: 3890Reputation: 3890Reputation: 3890Reputation: 3890
I'm afraid that it's been too-long since I have worked with PPTP.

To attract attention to "PPTP," you may wish to open a separate topic with "PPTP" in the title, referring as necessary to this one. (Edit: Good. I see that you have now done this.)

When you move on to OpenVPN, you will be able to test it even from within your home by connecting (just as you would "on the road") to your home's public IP-address. This will actually send the data outside, to your ISP's local router, and right back to you, but it will pass through your home router's "front door."

You can use tools such as tcpdump or WireShark to verify that the packets (usually, UDP port 1192) are leaving your home computer and that, thanks to the port-forwarding that you must set up, are arriving at your OpenVPN server. You do not have to "travel into town."

(I live in the country, too ... enjoying "dark sky" stargazing in my own pasture. "Town" in my case is only a couple miles away. I wouldn't trade it for anything.)

Last edited by sundialsvcs; 11-30-2016 at 09:43 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Simple VPN to link my home network to my father's and fiancees home networks christiansacks Linux - Networking 3 09-14-2012 02:55 PM
[SOLVED] Setting up home webserver (for testing) squadx Linux - Server 6 06-29-2010 03:44 PM
penetration testing on home network nightphreak Linux - Security 5 10-24-2009 02:01 PM
Unable To VPN From Home carlosinfl Linux - Security 1 09-04-2008 07:37 PM
DNS Help Setting Up a Testing Server at Home Hyden P Lainsite Linux - Server 1 02-17-2008 03:34 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 12:32 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration