From: gevisz <gevisz@gmail.com>
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] [OT] What is the best open-source VPN server for Linux?
Date: Fri, 6 Apr 2018 00:04:34 +0300 [thread overview]
Message-ID: <CA+t6X7cG0SVoqzK+_zbDcrnWQT82OKExQB_B_x7tE-BNL+AY3A@mail.gmail.com> (raw)
In-Reply-To: <277e584b-3d27-27a4-501e-af39ba7a24b8@spamtrap.tnetconsulting.net>
2018-04-05 19:29 GMT+03:00 Grant Taylor <gtaylor@gentoo.tnetconsulting.net>:
> On 04/05/2018 03:51 AM, gevisz wrote:
>>
>> Yes. And the Client also has static IP. Moreover, both OR and IR have
>> static IPs from the inside. So, the Host can make a connection request to
>> the Client.
>
> With the client having a static IP, things become a LOT simpler. Simply
> flip things around and have the ""Client be the VPN server and
> the ""Host be the VPN client.
Yes, you are right. It was my misunderstanding of the situation.
The VPN server was initially on outer computer with a static IP,
and on the computer inside the remoted local network was a VPN client.
I have corrected this a bit later in this thread, after a call to the friend.
I even wanted to write that the Host and Client notations should be swapped
but finally decided that this would lead to the mess.
> This REALLY SIGNIFICANTLY simplifies things.
>
>> The Host works as a remoted server and phisical access to it is costy. All
>> administrating of the Host should be done through the Client. That is the
>> reason for the need of VPN.
>
> I sort of wonder what services the server is offering if it can't be
> readily accessed from the outside world.
It makes requests to the other computers in the Internet and saves
the responses. (The same does the computer on the other end of
the scheme. The two remoted servers doing the same job are needed
for redundancy, just in case one of them cannot connect to the Internet
because the blackout, which happens quite often here.)
> Please share a summary of what you end up doing so that others can
> beneift from searching archives. ;-)
So far, my friend set a newer version of its initial VPN server and client.
The correct scheme looks as follows:
(Administrator) - (VPN host on Windows computer, static IP) <--> (ISP) <-->
<--> (Internet) <--> (static IP, [outer] router of another ISP,
static IP) <-->
<--> (dynamic IP, inner router, static IP in a remoted [local] network) <-->
<--> (static IP in the remoted [local] network, VPN client on
Windows computer in the remoted [local] network)
After starting, the VPN client automatically initiates connection to
the VPN server and
reinitiates it every time when the conection is lost. So, the
connection became permanent.
The initial problem was that, when the computer with the VPN server
loses connection
to the Internet, the VPN client hangs the "computer in the remoted
[local] network"
(in my view, by constantly trying to reconnect to the VPN server, so my initial
recomendation was to increase the time interval between the attempts
to reconnect.)
Currently, the Administrator set a newer version of its initial VPN
server and client
and plays with the parameters. If it won't help, he will try another
VPN server and
client on Windows. If that won't help as well, he is planning to set a
VPN client into
a virtual machine run on "Windows computer in remoted [local] network".
As far as a VPN client, in general, does not need graphical
evironment, it would be
expedient to run a Linux server inside the said virtual machine
(instead of another Windows).
next prev parent reply other threads:[~2018-04-05 22:20 UTC|newest]
Thread overview: 25+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-04-04 20:18 [gentoo-user] [OT] What is the best open-source VPN server for Linux? gevisz
2018-04-04 22:02 ` Grant Taylor
2018-04-04 23:03 ` Mick
2018-04-05 9:57 ` gevisz
2018-04-05 9:51 ` gevisz
2018-04-05 10:28 ` gevisz
2018-04-05 11:51 ` Mick
2018-04-05 14:42 ` gevisz
2018-04-05 13:14 ` Bill Kenworthy
2018-04-05 14:51 ` gevisz
2018-04-05 22:45 ` Bill Kenworthy
2018-04-06 18:13 ` gevisz
2018-04-05 22:53 ` Grant Taylor
2018-04-05 16:29 ` Grant Taylor
2018-04-05 21:04 ` gevisz [this message]
2018-04-05 23:10 ` Grant Taylor
2018-04-06 17:55 ` gevisz
2018-04-07 12:19 ` Mick
2018-04-07 13:33 ` R0b0t1
2018-04-06 17:58 ` Mick
2018-04-06 18:20 ` Grant Taylor
2018-04-06 22:51 ` Mick
2018-04-06 23:21 ` Grant Taylor
2018-04-07 1:44 ` R0b0t1
2018-04-04 23:55 ` R0b0t1
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=CA+t6X7cG0SVoqzK+_zbDcrnWQT82OKExQB_B_x7tE-BNL+AY3A@mail.gmail.com \
--to=gevisz@gmail.com \
--cc=gentoo-user@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox