D-Link Forums

The Graveyard - Products No Longer Supported => D-Link NetDefend Firewalls => Topic started by: scrubsguy on July 25, 2011, 05:34:35 AM

Title: Vpn?
Post by: scrubsguy on July 25, 2011, 05:34:35 AM

what is your method of VPN? which do you prefer to use?

Title: Re: Vpn?
Post by: danilovav on July 26, 2011, 12:45:11 PM

It depends from purpose

For lan-to-lan IPsec is the best what DFL family has
Sometimes need to use PPTP as lan-to-lan solution, but it's not good because only one side (client) is initiator of connection

For remote clients, now PPTP or L2TP over IPsec. Both are good, both are supported by all most used OS, especially Windows
But, both use special protocols (GRE and ESP), which can be blocked/not supported (same problem, but different reasons) by some network configurations
For this case, now under development new kind of VPN - SSL VPN. It's HTTPS-based, VPN interface now possiblt on DFL-260E/860E, don't need to use any special protocols, so much more easy to use it. Also, it seems compartible with MS SSTP, but i didn't finished testing yet.
I'm waiting for SSL VPN on DFL-210/800/etc, it will really great solution

If tell about not supported types, i like OpenVPN. It can be used from D-Link DSR (so young line...), DD-WRT, any Windows/Linux... I like it because it can go thru UDP instead TCP, can post routing to client, can compress and more more more... Will be great to have it on DFL, but i don't believe, so usually use it from any near PC/server/etc...

If you have any your special configuration, describe it, i'll try to help you

As i told, exact solution depends from situation. For example, i use at the same time IPsec, PPTP, SSL VPN, OpenVPN

Title: Re: Vpn?
Post by: scrubsguy on July 27, 2011, 02:05:48 AM

true true, but for CLient purposes, if a client comes to you and says i need to logon to computer at home from across town... what would you suggest?

Title: Re: Vpn?
Post by: danilovav on July 29, 2011, 02:05:03 PM

It depends from purpose of use
If just get a file from home NAS, better will be to use NAS WebUI
If need to provide some free (i mean - TCP, UDP, file, web, etc) services for anybody - DFL can't. Use SSL Explorer

Title: Re: Vpn?
Post by: scrubsguy on July 31, 2011, 10:19:09 PM

the main use would be basic , just to access some files , maybe printing to office machines, for some guy wants to do some work from home..... nothing major

Title: Re: Vpn?
Post by: danilovav on August 02, 2011, 01:51:36 PM

New DFLs (260E/860E) already have SSL VPN, if you can get this device, it's better to use.
If talk about common devices (210/800/...) - set up PPTP with IP pool from lannet. Using ARP proxy you can almost transparently pass traffic between remote clients and LAN.
But, to allow to see and access network by computer (NetBIOS) names, you need to use WINS additionally.

Title: Re: Vpn?
Post by: scrubsguy on August 03, 2011, 10:15:25 PM

ran into some minor issues.... the client heard about logmein Hamachi, and want's that setup now.... :o
idiot... anyway i just setup his open vpn account, and a pptp one... seems to be the open vpn delivers more speed on the network...