Quote:
Originally Posted by linsonav
1. server will be my vpn endpoint,so i can use my same router in main office?
|
The main office is the location with the static IP, right? Since the other location will be initiating the VPN connection, you will need to forward certain TCP and/or UDP ports from the router to the server acting as the endpoint. Exactly which ports you have to forward will depend on the VPN technology you wish to use.
If both endpoints are Linux systems, you have a number of different technologies to choose between, IPsec, OpenVPN and L2TP being the most popular. Just make sure you stay clear of PPTP, as it has serious, non-fixable security flaws.
Your VPN endpoint will be behind a NAT router. Plain IPsec is often not possible to use in such scenarios, since IPsec tunneling depends on protocol 51 (Encapsulating Security Payload), which doesn't use TCP or UDP ports (it's an IP protocol all on its own) and hence cannot be forwarded. Some IPsec implementations can use what is known as "IPsec NAT-T" directly, which uses UDP port 4500 by default and
can be forwarded, but in many cases IPsec NAT-T will only be used as a fallback after ESP has been tried and rejected because of NAT.
Note that if you cannot use IPsec, that also rules out L2TP. That leaves OpenVPN.
Quote:
Originally Posted by linsonav
2. distro i asked is for server. I used to windows now ubuntu. can ubuntu be used instead of ubuntuserver?i need too see whats going on in the server
|
I'm afraid I can't be of much help there, as I tend to stick to the command line. Perhaps someone else can suggest a good GUI-centric server distribution.
(It may be worth mentioning that even on the Windows platform, the GUI now takes a back seat to command line scripting via PowerShell. You should consider familiarizing yourself with the command line, as it offers flexibility and automation not easily accomplished via a GUI.)
Quote:
Originally Posted by linsonav
3. after installing server os(just desktop ubuntu) what additional things to be installed to use ip phone and sharing via vpn,just open vpn and asterisk?
|
If the IP phones use SIP, Asterisk is all you need.
Quote:
Originally Posted by linsonav
4. at present my router give ip to all.do i need to change it? both in main office and branch router gives ip which will be same 1921681.x
|
That absolutely will
not work. You simply cannot use the same IP network in two different locations. You will need to migrate at least one of the networks to a different IP range, and I'd actually recommend migrating
both, as "192.168.1.0/24" is the most overused private network on the planet (with 192.168.0.0/24 and 10.0.0.0/24 sharing second place).
Quote:
Originally Posted by linsonav
5. if branch connected to vpn,which country's google will appear in branch computer?google.co.in(main branch) or google.co.ae(branch country itself)?
|
That depends on your tunnel configuration. If you route everything through the tunnel, Internet traffic from the branch office will appear to come from the main office. If you choose to set up so-called "split tunneling" (which is by far the most common configuration), all traffic not destined for the main office will be routed through the local Internet connection as usual.
Quote:
Originally Posted by linsonav
6 all these will be legal right?only using linux..not any cracked or keygen windows thing,what about ip phones?
|
What about the IP phones? Asterisk doesn't require one to purchase a license, and unless the phones are tied to some peculiar, proprietary software, there should be no issues there either.
What kind of IP phones are we talking about here?
Quote:
Originally Posted by linsonav
7.any additional recommendations?
|
None that I can think of right now.