PPTP Tunneling

From DD-WRT Wiki

Revision as of 06:37, 26 August 2006 by Coperton (Talk | contribs)
Jump to: navigation, search

Point-to-Point Tunneling with two DD-WRT

The next configuration was made in two wrt54g (hardware version 2.2) and firmware "DD-WRT v23 SP1 (04/13/06) std"

Scenario:

  • Network A in location "a"
Router A address 192.168.1.1
DHCP range 192.168.1.100-150
Dyndns address "direccion_de_A.dyndns.org"



  • Network B in location "b"
Router B address 192.168.2.1
DHCP range 192.168.2.100-150
Dyndns address "direccion_de_B.dyndns.org"


And you wish connect to any IP of the network A or B, not mattering in what of them was connected


Configuration:

  • For network A has access to network B


On router A
In "Administration" tab
In "Services" tab
PPTP Client Options Enable
Server IP or DNS Name direccion_de_B.dyndns.org
Remote Subnet 192.168.2.0
Remote Subnet Mask 255.255.255.0
MPPE Encryption mppe required
MTU 1450
MRU 1450
User Name usernameB
Password passwordB
On router B
In "Administration" tab
In "Services" tab
PPTP Server Enable
Server IP 192.168.2.1
Client IP(s) 192.168.2.200-250
CHAP-Secrets usernameB * passwordB *


  • For network B has access to network A


On router A
In "Administration" tab
In "Services" tab
PPTP Server Enable
Server IP 192.168.1.1
Client IP(s) 192.168.1.200-250
CHAP-Secrets usernameA * passwordA *


On router B
In "Administration" tab
In "Services" tab
PPTP Client Options Enable
Server IP or DNS Name direccion_de_A.dyndns.org
Remote Subnet 192.168.1.0
Remote Subnet Mask 255.255.255.0
MPPE Encryption mppe required
MTU 1450
MRU 1450
User Name usernameA
Password passwordA

Notes:

  • The third octet of direction IP (192.168. thirdoctet.1) of the network A must be different of the network B
  • The range of Client IP(s) must be outside of dhcp
  • In the example the IP range that occurred for clients vpn ("Client IP(s)") was 192.168.x.200-250 therefore 51 VPN clients allowed

Some Images

The result in router A

http://img162.imageshack.us/img162/22/ruteadora6ir.jpg

The result in router B

http://img73.imageshack.us/img73/4391/ruteadorb3nn.jpg



Tip

  • To monitoring and guarantee the connection you can do this
On both routers
In "Administration" tab
In "Keep Alive" tab
Enable Watchdog Enable
Interval (in seconds) 300
IP Addresses 192.168.1.200 192.168.2.200

The image

http://img201.imageshack.us/img201/9416/keepaliveye2.jpg


Explanation: With this configuration the router will monitoring every 5 minutes (the 300 seconds) VPN server can assign an ip address and VPN client can obtain an ip address, if not the router will reboot until it can do that.



Useful Links

PPTP Server Configuration
http://wrt-wiki.bsr-clan.de/index.php?title=PPTP_Server_Configuration
HOW TO configure a WINDOWS BOX to make a VPN Connection to linksys
http://wrt-wiki.bsr-clan.de/index.php?title=HOW_TO_configure_a_WINDOWS_BOX_to_make_a_VPN_Connection_to_linksys