Difference between revisions of "VPN"

From Amahi Wiki
Jump to: navigation, search
 
(15 intermediate revisions by 4 users not shown)
Line 1: Line 1:
Remote VPN access to your Amahi HDA comes pre-configured out of the box. There is nothing to configure in the server.
+
There are '''two''' supported options for VPN in Amahi:
  
'''You need to forward one port (1194/UDP) to your HDA's IP''' to enable the VPN.
+
* An [http://www.amahi.org/apps/ipsec-vpn IPsec VPN app] which is built in on iOS devices like the iPad, iPhone, iPod. Details on how to set it up at [[IPSec VPN]]
 +
* An [http://www.amahi.org/apps/openvpn OpenVPN app] which is a popular open source VPN stack. This is not included by default in iOS or Mac OS X. Details on how to set it up at [[OpenVPN]]
  
Once connected from outside your network, your computer becomes virtually a computer in your home network. All your files and services are as easily accessible as when you are at home.
 
  
= Overview =
+
Both of them require forwarding ports to work from outside your network to your HDA.
  
There are two requirements for Remote Access to work:
+
We offer a free OpenVPN tester in your console in Amahi.org to test your setup, as a convenience, because the OpenVPN cannot be tested from within your network.
 
 
* On the client side, you need to be running a client
 
** We provide one for Windows, pre-configured for Amahi
 
** We recommend one for the Mac, which requires some manual configuration
 
** The client for Linux comes with most distros and uses the same settings as the Mac
 
* Your router needs to forward '''UDP port 1194''' to the IP address of your HDA. The way to do this is through port forwarding, which varies from router to router. Make sure you forward UDP (not TCP)
 
 
 
= Clients For Windows, Mac and Linux =
 
 
 
Check the page for [[VPN clients]].
 
 
 
= Resources on Port Forwarding =
 
 
 
* [http://www.portforward.com/english/routers/port_forwarding/routerindex.htm Massive database of port forwarding information by router]
 
* YouTube Video on Port Forwarding for Linksys Routers: http://www.youtube.com/watch?v=GWPUdW1kIJA
 
 
 
= Bridging VPN and eth0 =
 
 
 
if you'd like your VPN clients to get IP addresses in the same subnet as your HDA, and not in the 10.8.0.0/24 subnet (default), read this page: [[VPNBridge]].
 
 
 
= Troubleshooting =
 
* Make sure your HDA's network IP range is different than that of the remote network. (e.g. if your HDA's IP address is 192.168.1.X, you cannot connect to it on a remote network also using 192.168.1.X)
 
 
 
* If you are running your HDA from a Verizon FiOS connection, you may experience strange disconnections.  This may be due to the Actiontec router's small NAT table.  Please see guides here http://www.verizonfioswiki.com/index.php/Using_Your_Own_Router for instructions on how to use your own router.
 
 
 
* If you have a Vonage V-Portal (or perhaps other voip adapters as well), plug your router into your modem, then the v-portal into your router. Vonage tells you to put the v-portal between the modem and the router, but I was unable to connect to vpn until I moved the adapter behind the router.
 
 
 
= Implementation =
 
 
 
The VPN solution is implemented through the very popular [http://openvpn.net/ OpenVPN] software VPN.
 
  
 +
To get started, pick one and install the app and the relevant client software in your client computer or mobile device, then configure it for remote access.
  
 
[[Category: Services]]
 
[[Category: Services]]
 
[[Category: VPN]]
 
[[Category: VPN]]

Latest revision as of 10:34, 13 June 2017

There are two supported options for VPN in Amahi:

  • An IPsec VPN app which is built in on iOS devices like the iPad, iPhone, iPod. Details on how to set it up at IPSec VPN
  • An OpenVPN app which is a popular open source VPN stack. This is not included by default in iOS or Mac OS X. Details on how to set it up at OpenVPN


Both of them require forwarding ports to work from outside your network to your HDA.

We offer a free OpenVPN tester in your console in Amahi.org to test your setup, as a convenience, because the OpenVPN cannot be tested from within your network.

To get started, pick one and install the app and the relevant client software in your client computer or mobile device, then configure it for remote access.