Acest tutorial se poate folosii pe orice server si functioneaza flawless

Ca de obicei textul este publicat in spiritul GNU GPL license pentru a ajuta

Connecting to OpenVPN from behind (quite) any firewall through Port 80
Contributed by Livio Mazzon
Wednesday, 07 January 2009
This little how-to will show you, how to connect to your vpn through a

firewall on port 80 (mostly not locked, as else no web access was

possible)




Requirements:
- Endian Firewall

- Basic Configuration Knowledge

Steps before you leave home:

- Login to your Endian Firewall Web Interface

- Go to the "Firewall"-Tab and click on "Port Forwarding" in the menu, at your left

- Add a new Rule with following properties:

- Port on Red: 80

- Destination IP: (ex. 192.168.0.15)


- Destination Port:

- Click on Add, an voila


- Go to the "VPN"-Tab and click on "Openvpn Server" in the menu at your left

- Change protocol to "TCP" (UDP might work, please report if it does)

- Click on the edit option of your openvpn user

- In the section "Client Routing" activate the "use firewall as default gateway" checkbox

- Save and done!


Steps when your at a club and urgently need some very private files from your local network at home:
Veritech - Network Technology Innovation
http://www.veritechcorp.com.au Powered by Joomla! Generated: 24 July, 2009, 04:31

- Change the Settings of your openvpn client

- Using Endian VPN-Client:

- Click on "Properties"

- Select the "Profile" you want to use

- Click on the "Advanced" tab

- Port: 80

- Protocol: TCP (UDP might work as well, though haven't tried)


- Manual configuration of the vpn.conf file

- Look for the line beginning with 'remote' and change it like this:

<> remote myhost.com 80

- Look for the line beginning with 'proto' and change it like this (again, udp might work as well):


<> proto tcp

Click connect and hope the best

For Mac Users

We're kinda used to this things, that mac os x always has to do things

differently and in a "smarter" way, so of course this applies to the

DNS resolution as well. In OS X each "Location" may have different dns

entries which are managed by a daemon called lookupd. This daemon

simply ignores any manual changes to /etc/resolv.conf, so we can't set

the firewall as dns server.

To bypass this problem, execute the following steps:

Veritech - Network Technology Innovation
http://www.veritechcorp.com.au Powered by Joomla! Generated: 24 July, 2009, 04:31
- Open "System Preferences.app"

- Select the "Network" option

- Choose the "Location" and "Device" you're connected to the Internet with

- Enter the IP of your firewall as dns server entry in "DNS-Server"

- Click on "Apply" on you're done!

- Enjoy the World Wide Web with no port locks what so ever!


Veritech - Network Technology Innovation
http://www.veritechcorp.com.au Powered by Joomla! Generated: 24 July, 2009, 04:31