Creating a radius based VPN with support for Windows clients June 6th, 2010
This article discusses setting up up an integrated IPSec/L2TP VPN using Radius and integrating it with Microsoft Windows clients.
Introduction and Planning
The software installed is going to be based on Debian packages as far as it is possible.
If we need to rely on a product not within Debian, then it’s source code will be retrieved and rebuilt.
Also sometimes the Debian packages are available, but have a compilation feature switched off (usually SSL support).
Where necessary that Debian package will need to be recompiled too.
Overall Setup
The goal of this article is to set up a Linux based VPN server compatible with MS-Windows IPSec/L2TP clients, where users are authenticated against a RADIUS server.
Each main service in this document should have it’s own IP address assigned to it. That way services can be moved to different hosts in the future.
While the VPN server uses the ppp daemon as part of it’s solution, a separate IP needs to be allocated to that.
It is the point where the VPN tunnels terminate and route into the network.
For this document, the IP addresses assigned to the services follows.
Note that these will need to change based on your real-world rollout.
Base Operating System: 10.10.0.216 MySQL Database Server: 10.10.0.217 FreeRADIUS Server: 10.10.0.218 IPSec VPN Server: 10.10.0.219 ppp Device: 10.10.0.220 Read the rest of this entry »
Posted in databases, debian, linux, mysql, Networking, ubuntu | 1 Comment »
