Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Will this vpn idea work?
New Posts  All Forums:Forum Nav:

Will this vpn idea work?

post #1 of 6
Thread Starter 
Hello everybody.

As some of you know I'm studying towards a CCNA. Thanks for those of you who posted advice in the thread. smile.gif
Anyway, I'm looking to upgrade the router at home and had a few ideas to compliment it, namely having a bash at creating a VPN as it doesn't seem particularly hard to do with your average router.

I'm looking to purchase a Billion 7800 series but I thought I'd ask a couple of questions here first.
I'll say what I've got at the moment and then what I'm trying to do.

First of all, does anybody own one of these? They seem to be getting rave reviews. I was initially looking at a Draytek however I've got to find something that's compatible with my Sky Fibre line and this badboy seems to do the trick. Billion seem to release firmware updates much faster than Draytek do too. But hmmm... I like those Drayteks.... anyway...

At present I have a sky fibre connection. The line is awesome. The router is not. It needs to go.

On our home network we have 8 computers that could be on at any one time, a couple of switches dotted around the house and most importantly two NAS(es?) I also have a Samsung galaxy s3 and my dad has an s2.

I'm currently living at home with my parents after having finished my degree and my dad and I are looking for something a little fancier when it comes to getting at our data when away from home. I'm currently studying towards a Cisco CCNA so I'm not so bad when it comes to networking but configuring vpns are new to me so I need a prod in the right direction.

At present, I have ftp'd my nas which is not so bad for me and a few others who access my data but my dad is using some awful proprietary software that came with the nas to get his data.

I also don't have a static ip from Sky though I can get one if need be, however I have a dynamic domain name service thingy courtesy of dyndns to get around this problem.

What we would like to do is set up a vpn connection to our home network (using our dynamic name if possible) so we can basically browse the contents of our devices as though we were there (but without actually being there). I also would like to use it for my internet connection now and then when away because I know the connection in work is heavily monitored and filtered to a point of counter-productivity.
More than one user would need to be able to log in at the same time too and I might use it for occasional streaming too.

My research seems to suggest this idea is possible and straight forward however I would like to be sure that I'm not talking gibberish!
Many thanks for any advice given.

Cheers,
Mike
Clevo P170EM
(17 items)
 
Clevo M570RU
(13 items)
 
 
CPUMotherboardGraphicsRAM
Intel i7-3630QM Clevo P170EM Geforce GTX 680m 16GB @ 1600mhz 
Hard DriveHard DriveOptical DriveCooling
128GB Crucial M4 mSATA 2x 500GB Western Digital Black TSSTcorp SN-208BB Stock 
OSMonitorMonitorKeyboard
Windows 7 Ultimate x64 Clevo 1080p Dell 2407-HC Stock Glowing Keyboard 
PowerCaseMouseMouse Pad
Stock Laptop PSU Clevo MP170EM Logitech G700 Fellowes Gel Pad 
Audio
Asus Xonar U7 
CPUGraphicsRAMHard Drive
T7700 @ 2.4GHz GTX 8800m 4GB 667Mhz 320GB Internal, 1TB, 2x500GB & 320GB External U... 
Optical DriveOSMonitorKeyboard
Samsung SN-S082H Windows 7 Ultimate x64 17" Glossy WUXGA, Dell 2407WFP-HC Logitech G15 (blue one) 
PowerCaseMouseMouse Pad
Laptop PSU Clevo M570RU Logitech G700 Generic Mousepad 
  hide details  
Reply
Clevo P170EM
(17 items)
 
Clevo M570RU
(13 items)
 
 
CPUMotherboardGraphicsRAM
Intel i7-3630QM Clevo P170EM Geforce GTX 680m 16GB @ 1600mhz 
Hard DriveHard DriveOptical DriveCooling
128GB Crucial M4 mSATA 2x 500GB Western Digital Black TSSTcorp SN-208BB Stock 
OSMonitorMonitorKeyboard
Windows 7 Ultimate x64 Clevo 1080p Dell 2407-HC Stock Glowing Keyboard 
PowerCaseMouseMouse Pad
Stock Laptop PSU Clevo MP170EM Logitech G700 Fellowes Gel Pad 
Audio
Asus Xonar U7 
CPUGraphicsRAMHard Drive
T7700 @ 2.4GHz GTX 8800m 4GB 667Mhz 320GB Internal, 1TB, 2x500GB & 320GB External U... 
Optical DriveOSMonitorKeyboard
Samsung SN-S082H Windows 7 Ultimate x64 17" Glossy WUXGA, Dell 2407WFP-HC Logitech G15 (blue one) 
PowerCaseMouseMouse Pad
Laptop PSU Clevo M570RU Logitech G700 Generic Mousepad 
  hide details  
Reply
post #2 of 6
It not all that difficult. Even with a dynamic IP there are services out there that will update a child domain on their end and point it at your IP simply by running a small program from inside you network. Something along the lines of: "yournamehere.hostingservice.com"

You will need to choose a VPN package, install the server inside you network and the clients on the portable devices of course. Make sure you toggle the option to bridge the networks / browse internal network, then forward the proper port ranges to the server inside your network on your router. With any luck it will all work on the first~third try. =P

You can get some issues if you try and test the VPN from inside your network, so be sure to try it from outside before planning on being able to use it.
post #3 of 6
Im using cisco asa 5505 box for my 100Mbps/100Mbps fiber connection and in another remote location im using cisco 2811 router with IPSec tunnel between them to share stuff between the two locations smile.gif

How is the Sky fiber connection, do you need any specific router or is it just plain ethernet that can be plugged in any router/pc/firewall ?
Bitfenix Prodigy
(10 items)
 
  
CPUMotherboardGraphicsRAM
i5 3570k ASRock Z77E-ITX MSI 570 GTX 2x4GB 1600Mhz+ Samsung Green 
Hard DriveHard DriveCoolingPower
Samsung 830 256GB WD Green 640GB Corsair H100 Corsair TX750 
Case
Bitfenix Prodigy - White 
  hide details  
Reply
Bitfenix Prodigy
(10 items)
 
  
CPUMotherboardGraphicsRAM
i5 3570k ASRock Z77E-ITX MSI 570 GTX 2x4GB 1600Mhz+ Samsung Green 
Hard DriveHard DriveCoolingPower
Samsung 830 256GB WD Green 640GB Corsair H100 Corsair TX750 
Case
Bitfenix Prodigy - White 
  hide details  
Reply
post #4 of 6
@andri

Sky use a hybrid fibre connection, where the fibre comes from the telephone exchange to s street cabinet, then a copper line comes from the cabinet to the premises. The copper line carries analog voice and VDSL2. A VDSL2 modem is installed in the premises, and has an Ethernet port to connect to a router.


@OP

Sky's system is set up so that you can use the service only with their router and no other. However, people have worked around this by switching off the WiFi on the Sky router and putting their own router in the DMZ of the Sky router. Look here and here for more info.

EDIT:

Also here.
Edited by parityboy - 11/27/12 at 6:06pm
Ryzen
(12 items)
 
  
CPUMotherboardGraphicsRAM
Ryzen 7 1700 Gigabyte GA-AB350M Gaming 3 Palit GT-430 Corsair Vengeance LPX CMK16GX4M2B3000C15 
Hard DriveCoolingOSMonitor
Samsung 850 EVO AMD Wraith Spire Linux Mint 18.x Dell UltraSharp U2414H 
KeyboardPowerCaseMouse
Apple Basic Keyboard Thermaltake ToughPower 850W Lian-Li PC-A04B Logitech Trackman Wheel 
  hide details  
Reply
Ryzen
(12 items)
 
  
CPUMotherboardGraphicsRAM
Ryzen 7 1700 Gigabyte GA-AB350M Gaming 3 Palit GT-430 Corsair Vengeance LPX CMK16GX4M2B3000C15 
Hard DriveCoolingOSMonitor
Samsung 850 EVO AMD Wraith Spire Linux Mint 18.x Dell UltraSharp U2414H 
KeyboardPowerCaseMouse
Apple Basic Keyboard Thermaltake ToughPower 850W Lian-Li PC-A04B Logitech Trackman Wheel 
  hide details  
Reply
post #5 of 6
Thread Starter 
Apologies for the slow reply. Work keeps me busy...
Quote:
Originally Posted by DarkPhoenix View Post

It not all that difficult. Even with a dynamic IP there are services out there that will update a child domain on their end and point it at your IP simply by running a small program from inside you network. Something along the lines of: "yournamehere.hostingservice.com"
You will need to choose a VPN package, install the server inside you network and the clients on the portable devices of course. Make sure you toggle the option to bridge the networks / browse internal network, then forward the proper port ranges to the server inside your network on your router. With any luck it will all work on the first~third try. =P
You can get some issues if you try and test the VPN from inside your network, so be sure to try it from outside before planning on being able to use it.

I won't be bothering with a PC based VPN, the router itself will be the VPN server. But thanks for the input. smile.gif I'm hoping it all goes smoothly. I'm probably going to drop my money on a new router at some point during work tomorrow anyway so it gives me something to do on my next day off.
I just wanted to know if what I described was possible but all indicators seem to be pointing towards yes. biggrin.gif
Quote:
Originally Posted by andri View Post

Im using cisco asa 5505 box for my 100Mbps/100Mbps fiber connection and in another remote location im using cisco 2811 router with IPSec tunnel between them to share stuff between the two locations smile.gif
How is the Sky fiber connection, do you need any specific router or is it just plain ethernet that can be plugged in any router/pc/firewall ?

That my friend is an expensive set up you have there... thumb.gif

With regards to the Sky connection, parityboy has largely summed it up. Saves me a job!

There is a BT Open Reach Huawei modem in my house connected to the wall and an ethernet port running to the Sky Sagem based router. I hate this router and don't want it as part of the network. Plus all this stuff has to live in the front room where there will be complaints about cabling and anything with flashing lights.
Sky actually embed your username and password in the router to make sure that you only use their equipment, however with little difficulty this information can be extracted.

Sky unlike most UK ISPs uses 1483MER encapsulation and to make it more difficult, Sky have slightly modified it! So finding a router or someone who has released firmware that makes a router compatible with this was essential.

My research led me to the ASUS RT-N66U Dark Knight which has been receiving rave reviews or the Billion 7800n.
To get the ASUS working you have to flash some easily acquirable 3rd party firmware which then adds the required DHCP handshake so I can use my username and password.
To get the Billion 7800n working, Billion have actually released their own firmware to make the use of their equipment on Sky Fibre lines possible, which I must admit I quite like.
Edited by msremmert - 11/27/12 at 6:32pm
Clevo P170EM
(17 items)
 
Clevo M570RU
(13 items)
 
 
CPUMotherboardGraphicsRAM
Intel i7-3630QM Clevo P170EM Geforce GTX 680m 16GB @ 1600mhz 
Hard DriveHard DriveOptical DriveCooling
128GB Crucial M4 mSATA 2x 500GB Western Digital Black TSSTcorp SN-208BB Stock 
OSMonitorMonitorKeyboard
Windows 7 Ultimate x64 Clevo 1080p Dell 2407-HC Stock Glowing Keyboard 
PowerCaseMouseMouse Pad
Stock Laptop PSU Clevo MP170EM Logitech G700 Fellowes Gel Pad 
Audio
Asus Xonar U7 
CPUGraphicsRAMHard Drive
T7700 @ 2.4GHz GTX 8800m 4GB 667Mhz 320GB Internal, 1TB, 2x500GB & 320GB External U... 
Optical DriveOSMonitorKeyboard
Samsung SN-S082H Windows 7 Ultimate x64 17" Glossy WUXGA, Dell 2407WFP-HC Logitech G15 (blue one) 
PowerCaseMouseMouse Pad
Laptop PSU Clevo M570RU Logitech G700 Generic Mousepad 
  hide details  
Reply
Clevo P170EM
(17 items)
 
Clevo M570RU
(13 items)
 
 
CPUMotherboardGraphicsRAM
Intel i7-3630QM Clevo P170EM Geforce GTX 680m 16GB @ 1600mhz 
Hard DriveHard DriveOptical DriveCooling
128GB Crucial M4 mSATA 2x 500GB Western Digital Black TSSTcorp SN-208BB Stock 
OSMonitorMonitorKeyboard
Windows 7 Ultimate x64 Clevo 1080p Dell 2407-HC Stock Glowing Keyboard 
PowerCaseMouseMouse Pad
Stock Laptop PSU Clevo MP170EM Logitech G700 Fellowes Gel Pad 
Audio
Asus Xonar U7 
CPUGraphicsRAMHard Drive
T7700 @ 2.4GHz GTX 8800m 4GB 667Mhz 320GB Internal, 1TB, 2x500GB & 320GB External U... 
Optical DriveOSMonitorKeyboard
Samsung SN-S082H Windows 7 Ultimate x64 17" Glossy WUXGA, Dell 2407WFP-HC Logitech G15 (blue one) 
PowerCaseMouseMouse Pad
Laptop PSU Clevo M570RU Logitech G700 Generic Mousepad 
  hide details  
Reply
post #6 of 6
It is rather straight forward as you assumed. Although as someone else stated using a service like dyndns would be an very easy solution to your question. Although I completely understand why you would want to take your approach as it will be a learning experience if you've never done it previously. Two bits of advice for your studies. 1. This may be outdated as I got my ccna almost 10 years ago right after college is the software "routersim" which provides excellent virtual real world simulations with networks and equipment most people definitely do not own or may not have access to when getting cisco certs . If its out of date maybe there is something new. 2. Just study those nice big books and don't worry its not hard at all if you study. I had 3 weeks of prep before I took mine as my first job wanted me certified. Also you don't need any real experience to pass the ccna, now the ccnp if you go that route or higher you definitely will. Good luck and obviously experience and or experimenting only makes it easier.
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Will this vpn idea work?