ASL-Corp members, Bureaucrats, Check users, Structured Discussions bots, oversight, Suppressors, Administrators, Upload Wizard campaign editors
1,714
edits
Changes
Jump to navigation
Jump to search
Line 532:
Line 532: + + − vpnc is an open-source VPN client that is compatible with Cisco VPN setups. VPNC is much easier to configure than the Cisco client and works on almost every flavor of UNIX systems including Linux, Macs and BSD, as well as Ubuntu.+ + + − This is handy if you have a VPN server or IOS router setup and wish to use it. w9cr.net runs this as a means to get public IP's directly on nodes, bypassing NAT444 and man-in-the-middle IAX level filtering.+ + + + + + + + − + − * sudo apt-get install vpnc+ − === config ===+ + − Create a configuration file for the RPI Wireless and/or RPI External profile. Usually these files would be stored in /etc/vpnc/profile_name.conf. The default /etc/vpnc/default.conf. + + − An example config for the W9CR.net vpn server:+ + − '''w9cr example config'''+ − IPSec gateway cisco.keekles.org+ − IPSec id AMPRNET − IPSec secret EzAsARDC − Xauth username YOUR-CALLSIGN − Xauth password _YOUR_PASSWORD_HERE_ − === running it ===+ + − + + − + − * sudo vpnc external -- This would run VPNC using /etc/vpnc/external.conf, if it exists.+ + + + + + + + + + + + − ==== Starting it at boot ====+ + − IF you're behind NAT, you want to start this at boot.+ + − The simplest way is to call it from /etc/rc.local, but that's a bit in-elegant.+ − − make the following file at /usr/lib/systemd/system/vpnc@.service − − [Unit] − Description=VPNC connection to %i − Wants=network-online.target − After=network.target network-online.target − − [Service] − Type=forking − ExecStart=/usr/bin/vpnc --pid-file=/run/vpnc@%i.pid /etc/vpnc/%i.conf − PIDFile=/run/vpnc@%i.pid − − [Install] − WantedBy=multi-user.target − − So, in order to have your VPN autostart from the configuration file /etc/vpnc/w9cr.conf, you'd do: − − systemctl enable vpnc@w9cr − systemctl start vpnc@w9cr + + − + − If you want a vpn connection via w9cr.net using 44net public IP space, please contact bryan@bryanfields.net. Include your callsign and details.+ + − + − Any other information that doesn't fit elsewhere.+ + + + + + + + + + +
Reformatted/edited VPNC entry. Created providers section.
== VPNC ==
== VPNC ==
VPNC is an open-source VPN client that is compatible with Cisco VPN setups.
VPNC is much easier to configure than the Cisco client and works on almost every flavor of *NIX systems including *BSD, Linux, and even OS/X.
=== Installation ===
To install VPNC on Debian based distributions:
sudo apt-get install vpnc
=== Configuration ===
Edit the default config file as follows (substitute your own name if you want to name the connection instead of using default. You will use this name as @<name> when calling vpnc.)
* Edit /etc/vpnc/default.conf.
IPSec gateway <VPNC server IP or FQDN>
IPSec id AMPRNET
IPSec secret EzAsARDC
Xauth username YOUR-CALLSIGN
Xauth password _YOUR_PASSWORD_HERE_
=== install ===
=== Starting the VPN ===
Use one fo the following commands to start your VPNC based VPN connection.
* This command would run VPNC using /etc/vpnc/default.conf, if it exists. If it does not, it would prompt for the connection information:
sudo vpnc
* This would run VPNC using /etc/vpnc/external.conf, if it exists.
sudo vpnc external
==== Starting at boot ====
You can start your VPNC based VPN connection at boot using one of the following methods.
===== /etc/rc.local =====
This is the simplest way and does not involve creating init scripts or systemd service files.
Add a line such as the following into your /etc/rc.local file:
vpnc
To connect to the VPN you would run one of the following commands as root or using sudo:
===== systemd =====
To control from systemd:
* sudo vpnc -- This command would run VPNC using /etc/vpnc/default.conf, if it exists. If it does not, it would prompt for the connection information
* Edit /usr/lib/systemd/system/vpnc@.service
[Unit]
Description=VPNC connection to %i
Wants=network-online.target
After=network.target network-online.target
[Service]
Type=forking
ExecStart=/usr/bin/vpnc --pid-file=/run/vpnc@%i.pid /etc/vpnc/%i.conf
PIDFile=/run/vpnc@%i.pid
[Install]
WantedBy=multi-user.target
* Enable default VPNC configuration to be managed by systemd:
systemctl enable vpnc
* Start default VPNC connection with systemd:
systemctl start vpnc
Note: If you have multiple VPNC configurations or chose to name your config, you will substitute vpnc for vpnc@<config name>.
== Other ==
Any other information that doesn't fit elsewhere.
=== More info ===
= Ham Radio VPN Providers =
The following is a table of providers who offer free VPN connections to licensed Ham Radio operators.
'''Note: No commercial advertisements or pay services are allowed or permitted. Adding them will get your account removed and/or IP address banned.'''
== Other ==
{| class="wikitable" style="text-align: left; width: 85%"
|+ Providers of Ham Radio VPN Connections
! System
! Contact
! Type
! Notes
|-
| w9cr.net
| Bryan Fields, W9CR (bryan@bryanfields.net)
| VPNC
| Used as a means to get public IP's directly on nodes, bypassing NAT444 and man-in-the-middle IAX level filtering. Provides 44net public IP space. Include your callsign in the details.
|}
= Firewall =
= Firewall =