EdgeOS VPN Opsætning

Fra Millenium's Wiki
Spring til navigation Spring til søgning

VPN setup

Forbind til CLI med et terminalprogram (Putty)

Gå i konfigurationsmode

configure

Set til local konfiguration

set vpn pptp remote-access authentication mode local

Definér brugernavn(e)

set vpn pptp remote-access authentication local-users username <brugernavn> password <adgangskode>

Set DHCP pool (de IP addresser der kan tildeles via VPN.

set vpn pptp remote-access client-ip-pool start 192.168.1.170
set vpn pptp remote-access client-ip-pool stop 192.168.1.175

Set ekstern IP adresse

Fast:

set vpn l2tp remote-access outside-address <ekstern IP>

Dynamisk (eth0 antages som WAN interface):

set vpn l2tp remote-access dhcp-interface eth0

Set DNS server adresser

set vpn pptp remote-access dns-servers server-1 8.8.8.8
set vpn pptp remote-access dns-servers server-2 8.8.4.4

Firewall setup

Tilføj regler

PPTP:

set firewall name WAN_LOCAL rule 30 action accept
set firewall name WAN_LOCAL rule 30 description Allow_PPTP
set firewall name WAN_LOCAL rule 30 destination port 1723
set firewall name WAN_LOCAL rule 30 log disable
set firewall name WAN_LOCAL rule 30 protocol tcp

PPTP_GRE

set firewall name WAN_LOCAL rule 40 action accept
set firewall name WAN_LOCAL rule 40 description Allow_PPTP_GRE
set firewall name WAN_LOCAL rule 40 protocol GRE
set firewall name WAN_LOCAL rule 40 log disable

Gem og aktiver setup

commit
save