Want to access your work PC from home? Read on if you have Linux on both sides. Windows junkies, you're on your own. I will also assume that you already have iBurst working on your Linux box at home.
First download OpenVPN from
http://openvpn.net/
It may even be included in your distro. Install on both machines. Set your firewall(s) to have port 1194 (the standard for openvpn) open. Follow the instructions in the README file to generate a key. Save the the file as /etc/openvpn/static.key on both client and server.
Secondly you will need a DNS name. Go to
http://www.dyndns.com/
and sign up for a free dynamic DNS.
You will now set up a VPN server on your home box and a VPN client on your work box.
On the client, create the following config file as /etc/openvpn/client.conf
remote rooijan.is-a-geek.net
daemon
dev tun
ifconfig 10.11.12.2 10.11.12.1
secret static.key
comp-lzo
keepalive 10 60
ping-timer-rem
persist-tun
persist-key
link-mtu 1324
The line "link-mtu 1324" is very important in the iBurst context. Leave it out at your peril.
On the server create the following file as /etc/openvpn/server.conf
dev tun
ifconfig 10.11.12.1 10.11.12.2
daemon
secret /etc/openvpn/static.key
comp-lzo
keepalive 10 60
ping-timer-rem
persist-tun
persist-key
link-mtu 1324
log-append openvpn.log
I set it all up from work. I logged the home box into iBurst before leaving. You have to go to www.dyndns.com to update your IP address every time you log in, or you can download and install a script to do it automatically. I also opened the ssh port (22). Also threaten any persons at home with dire consequences if they switch off the box!
At the office I was able to run
ssh rooijan.is-a-geek.net
and log into my home machine. I could then scp the secret.key file and edit the config files.
The next step is to make sure that openvpn runs all the time on your client machine.
On the server at home, you only need to start it when needed. The command is
/usr/local/sbin/openvpn --cd /etc/openvpn --config server.conf
Give it about half a minute for the magic to happen. You can then do
ssh 10.11.12.2
and your now logged into your work machine. You can now do all your command line things (gotta love vi) and put in a day's work from home!
If I left anything out, feel free to ask.
First download OpenVPN from
http://openvpn.net/
It may even be included in your distro. Install on both machines. Set your firewall(s) to have port 1194 (the standard for openvpn) open. Follow the instructions in the README file to generate a key. Save the the file as /etc/openvpn/static.key on both client and server.
Secondly you will need a DNS name. Go to
http://www.dyndns.com/
and sign up for a free dynamic DNS.
You will now set up a VPN server on your home box and a VPN client on your work box.
On the client, create the following config file as /etc/openvpn/client.conf
remote rooijan.is-a-geek.net
daemon
dev tun
ifconfig 10.11.12.2 10.11.12.1
secret static.key
comp-lzo
keepalive 10 60
ping-timer-rem
persist-tun
persist-key
link-mtu 1324
The line "link-mtu 1324" is very important in the iBurst context. Leave it out at your peril.
On the server create the following file as /etc/openvpn/server.conf
dev tun
ifconfig 10.11.12.1 10.11.12.2
daemon
secret /etc/openvpn/static.key
comp-lzo
keepalive 10 60
ping-timer-rem
persist-tun
persist-key
link-mtu 1324
log-append openvpn.log
I set it all up from work. I logged the home box into iBurst before leaving. You have to go to www.dyndns.com to update your IP address every time you log in, or you can download and install a script to do it automatically. I also opened the ssh port (22). Also threaten any persons at home with dire consequences if they switch off the box!
At the office I was able to run
ssh rooijan.is-a-geek.net
and log into my home machine. I could then scp the secret.key file and edit the config files.
The next step is to make sure that openvpn runs all the time on your client machine.
On the server at home, you only need to start it when needed. The command is
/usr/local/sbin/openvpn --cd /etc/openvpn --config server.conf
Give it about half a minute for the magic to happen. You can then do
ssh 10.11.12.2
and your now logged into your work machine. You can now do all your command line things (gotta love vi) and put in a day's work from home!
If I left anything out, feel free to ask.
