Here is how I've done this setup. First, I agree that this should be a routed setup. Given that your current LAN is a /16, the broadcast traffic alone would likely saturate your Internet pipes, so bridged mode is out. In the routed scenario, you're going to have to choose a different network than 192.168.x.x you are using on your campus LAN, as your clients having a 255.255.0.0 mask think every 192.168.x.x address is local to them. This leaves you a 10.x.x.x or 172.16.x.x-172.31.x.x for addressing. Choose a network.. hopefully a /24 network will work for you at the boarding school. How many clients do you expect on the boarding school network? Let's assume it's under 200ish so 10.10.10.0/24 will work just fine. I'd setup your remote end Endian to hand out DHCP for the boarding school. You set the LAN on the Endian as 10.10.10.1/24 and hand out 10.10.10.50-10.10.10.250 as their DHCP range. Ensure that the DNS suffix is the same as your Active Directory (AD) Domain and set the DNS servers to point at the AD servers at the school. Now the devices should be able to authenticate against the domain without issues. Michael J. Knisely
________________________________ From: Sam Osborne [mailto:[EMAIL PROTECTED] Sent: Sun 10/26/2008 07:15 To: efw-user@lists.sourceforge.net Subject: [Efw-user] OpenVPN two Endian Firewalls can't get working Hi Everyone, I just can't get this VPN working. I've got a running 2.1.2 EFW at our school. In the school I have a Windows Server running DHCP giving IP addresses in the range of 192.168.103.x with subnet 255.255.0.0 the EFW is 192.168.100.200 I have other clients manually configured in the 192.168.101.x and 192.168.102.x ranges. We have now taken over a boarding school and therefore have two campuses. Both have ADSL connections. I'm trying to setup a VPN between the two so that clients on the new LAN in the boarding college can receive a DHCP address from the Windows Server, and so they can also log into the domain and access all the same stuff they can as if they are sitting in the preexisting school LAN (servers, intranet, and all Internet traffic sent through the school EFW proxy). I've followed the directions on this page httpp://www.endian.com/fileadmin/documentation/efw-admin-guide/en/efw.vpn.openvpn.html#efw.vpn.openvpn.net2net_stepbystep but can't get what I want. New EFW is 2.2 rc3. Both sides say connection established, however it is not getting a DHCP IP address. What IP address should the new EFW have on green? Still in the 192.168 range or is it suppose to be completely different 10.0 etc? What IP address pool should I set in the OpenVPN server? Any help anyone can give me would be greatly appreciated, I've tried different configurations for 3 days now, searched Google and this list. Thanks! Sam. ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
<<winmail.dat>>
------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
