Difference between revisions of "VPN"

From Amahi Wiki
Jump to: navigation, search
Line 20: Line 20:
 
** After installation is done. It will display a small icon in the desktop tray. It may also display a network icon with a red mark indicating "A network cable is di
 
** After installation is done. It will display a small icon in the desktop tray. It may also display a network icon with a red mark indicating "A network cable is di
 
sconnected." This is the VPN "network adapter" indicating the VPN is down.
 
sconnected." This is the VPN "network adapter" indicating the VPN is down.
  attachment:vpn-taskbar.png
+
[[Image:vpn-taskbar.png]]
 
** Any time you want to connect, simply double click in the icon.
 
** Any time you want to connect, simply double click in the icon.
 
** Input your HDA's nickname, your username and password.
 
** Input your HDA's nickname, your username and password.
Line 30: Line 30:
 
* Download and install [http://www.tunnelblick.net/Tunnelblick_3.0_B4.zip Tunnelblick 3.0(B4)] for Mac OS X 10.4.
 
* Download and install [http://www.tunnelblick.net/Tunnelblick_3.0_B4.zip Tunnelblick 3.0(B4)] for Mac OS X 10.4.
 
* There are some .ctr/.key files needed:
 
* There are some .ctr/.key files needed:
   attachment:HomeHDAClient.crt
+
   [[Image:HomeHDAClient.crt]]
 
   <br>
 
   <br>
   attachment:HomeHDAClient.key
+
   [[Image:HomeHDAClient.key]]
 
   <br>
 
   <br>
   attachment:ca.crt
+
   [[Image:ca.crt]]
 
* Download the .ctr/.key files and save them in the /Users/'''username'''/Library/openvpn folder, where '''username''' is the home directory of the current user.
 
* Download the .ctr/.key files and save them in the /Users/'''username'''/Library/openvpn folder, where '''username''' is the home directory of the current user.
 
* Go to the configuration for Tunnelblick and edit the config file.
 
* Go to the configuration for Tunnelblick and edit the config file.

Revision as of 00:44, 3 July 2007

Our remote access solution is implemented through the very popular OpenVPN software.

Each HDA comes preconfigured with a remote access server. Once connected, your machine is virtually part of your home network.

Requirements

There are two requirements:

  • On the client side, you need to be running an OpenVPN client. We provide one for Windows, preconfigured and we recommend one for the Mac, which requires some manual configuration (for the time being).
  • Your router needs to provide acces to UDP port 1194.

On to the clients.

Windows

    • Download the HDAConnect installer.
    • Note: You will want to exit and uninstall the previous version, if any.
    • On windows XP simply run it. On Vista, run it as Administrator (this is important). The defaults should work for everyone.
      • Click on "Continue Anyway" warning for the driver, if any.
    • After installation is done. It will display a small icon in the desktop tray. It may also display a network icon with a red mark indicating "A network cable is di

sconnected." This is the VPN "network adapter" indicating the VPN is down.

Vpn-taskbar.png
    • Any time you want to connect, simply double click in the icon.
    • Input your HDA's nickname, your username and password.

Mac

For the Mac, we recommend using the Tunnelblick client.

  • Download and install Tunnelblick 3.0(B4) for Mac OS X 10.4.
  • There are some .ctr/.key files needed:
  File:HomeHDAClient.crt
  
File:HomeHDAClient.key
File:Ca.crt
  • Download the .ctr/.key files and save them in the /Users/username/Library/openvpn folder, where username is the home directory of the current user.
  • Go to the configuration for Tunnelblick and edit the config file.
  • Click on the Tunnelblick icon in the upper right corner of the display, then click Details...
[[Image:tunnelblick-pulldown.png]
  • "OpenVPN Log Output" window should appear, click on Edit Configuration. Make sure the Set Nameserver (Experimental) option is checked.

Tunnelblick-editconfig.png

  • Delete the default sample configuration

attachment:openvpn_conf1.png attachment:openvpn_conf2.png

  • Copy and paste the configuration below into the OpenVPN.conf file, replacing XYZ for your HDA's nickname:
remote XYZ.yourhda.com 1194
client
dev tun
proto udp
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert HomeHDAClient.crt
key HomeHDAClient.key
comp-lzo
verb 3
auth-user-pass

Openvpn conf4.png

  • Any time you want to connect from outside of your home network, simply click on Connect
  • Input your username and password
  • It is possible to use keyrings. Will link here the details when available.

Note:

  • The procedure above has been tested with an Intel-based Mac OSX.
  • If the latest does not work, try the Beta 3 of Tunneblick: Tunnelblick_3.0_rc3.zip