Results 1 to 9 of 9
  1. #1
    Untangler Muggle's Avatar
    Join Date
    Jun 2009
    Location
    Lakewood, CA
    Posts
    66

    Default OpenVPN - Re-Router

    I'm looking into adding the OpenVPN...but it appears that it too is not designed for the Re-Router as yet. Am I correct in this ?

    Thanks in advance !!

  2. #2
    Untangle Junkie dmorris's Avatar
    Join Date
    Nov 2006
    Location
    San Carlos, CA
    Posts
    17,486

    Default

    i've heard some people have gotten it to work, but I think its a bit crazy

    I'd definitely go dedicated if you want to run a VPN (and install it as a gateway not a bridge)
    Attention: Support and help on the Untangle Forums is provided by volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com

  3. #3
    Untangler Muggle's Avatar
    Join Date
    Jun 2009
    Location
    Lakewood, CA
    Posts
    66

    Default

    I seem to be leaning to a dedicated box...wanting OpenVPN and Ad Blocker added to my system.

    I'll probably do that over the weekend...thanks again dmorris !!

  4. #4
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    26,514

    Default

    Yeah OpenVPN on router mode is SO much more direct than OpenVPN on a bridge. OpenVPN within the context of rerouter is almost identical to a bridge deployment... but to be fair it is a task that I think takes a bit more network tomfoolery than it should.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  5. #5
    Untangle Ninja
    Join Date
    Jan 2009
    Posts
    1,186

    Default

    What is the issue with using Openvpn in bridge mode?
    I've only had one minor issue with that setup behind a gateway, in that I can't access the gateway through the vpn.

  6. #6
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    26,514

    Default

    There are several issues, first is the native routing issue that is causing your gateway problem. That is fixed with an appropriate static route...

    But the larger issue is that Untangle really wants to be an "edge" device. If "internal" traffic is ever shown on the internet side of a wan adapter you have to get creative with bypasses to get the traffic to flow properly.

    All this can be done, but it is a world of extra work that can be side stepped with a network design that includes Untangle from the beginning.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  7. #7
    Untangle Ninja
    Join Date
    Jan 2009
    Posts
    1,186

    Default

    Quote Originally Posted by sky-knight View Post
    That is fixed with an appropriate static route...
    Shoot, I was going to look into that for this office but I forgot, everything behind ut in both subs is reachable but not the gateway. I'll have to fix that so I can say I did.

    I have a trust issue with ut being the failpoint, in two installations, there's no choice but for bridge since they are behind evdo gateways, but.....

    I'd really like to upgrade these units from 6.01 to 6.2 just cause but it's such a time consuming pia.....

    One day soon I will drop one in at home as a router and change my Tomato install over to an ap, then we'll see, though if my wife can't vpn into her office through their sonicwall........doh!
    Last edited by fasttech; 06-09-2009 at 01:44 PM.

  8. #8
    Untangler Muggle's Avatar
    Join Date
    Jun 2009
    Location
    Lakewood, CA
    Posts
    66

    Default

    Quote Originally Posted by sky-knight View Post
    There are several issues, first is the native routing issue that is causing your gateway problem. That is fixed with an appropriate static route...

    But the larger issue is that Untangle really wants to be an "edge" device. If "internal" traffic is ever shown on the internet side of a wan adapter you have to get creative with bypasses to get the traffic to flow properly.

    All this can be done, but it is a world of extra work that can be side stepped with a network design that includes Untangle from the beginning.

    After reading this...it's DEFINITELY off to a stand-alone install I go....

    Thanks again SKY !!!

  9. #9
    Untangler Muggle's Avatar
    Join Date
    Jun 2009
    Location
    Lakewood, CA
    Posts
    66

    Default

    HEY...I made Untanglit !!

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2