NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
L2TP/IPSec VPN running on x86 ReadyNAS e.g. Ultra ?
Dear All,
I've got my ReadyNAS about half a year now, and it's working great, even better after I made some small adjustments following many posts in this forums.
I'm really grateful to many who release add-ons and write guides on how to extend our nas-es.
Now regarding having a vpn server on the box.
I had OpenVPN running, but it's use it's sort of limited, e.g. you can't use openvpn on any iOS device without jail breaking it.
I also had PPTP VPN running but even with MSCHAPv2 it's not considered secure enough (http://www.schneier.com/paper-pptpv2.html) although it's probably good enough for sporadic access from outside.
L2TP/IPSec is considered secure (?) and can be used out of the box on osx/ios/windows systems so it looks like a perfect candidate.
There are guides (http://www.mayrhofer.eu.org/l2tp-ipsec-gateway-for-mobile-phones) on how to get it running on OpenWRT, however I don't want to go that way as I would loose hardware nat on my router (TP-LINK WDR4200) and also the least customized devices I have the better :).
To my surprise I didn't find anyone who tried to get L2TP/IPSec running on ReadyNAS.
Let's say i'm not yet very comfortable playing with kernel modules, if i know what to add then i can follow, but trying things all by myself, hmm that's gonna be interesting :)
So before I give it a try and possibly run into kernel panics slash/ reinstalling firmware slash/ factory reset :) , maybe i missed something, maybe there is some particular reason for not trying L2TP/IPSec on ReadyNAS ?
I was thinking to use openswan/stronswan and xl2tpd, any comments on that?
thanks for your feedback
mle
I've got my ReadyNAS about half a year now, and it's working great, even better after I made some small adjustments following many posts in this forums.
I'm really grateful to many who release add-ons and write guides on how to extend our nas-es.
Now regarding having a vpn server on the box.
I had OpenVPN running, but it's use it's sort of limited, e.g. you can't use openvpn on any iOS device without jail breaking it.
I also had PPTP VPN running but even with MSCHAPv2 it's not considered secure enough (http://www.schneier.com/paper-pptpv2.html) although it's probably good enough for sporadic access from outside.
L2TP/IPSec is considered secure (?) and can be used out of the box on osx/ios/windows systems so it looks like a perfect candidate.
There are guides (http://www.mayrhofer.eu.org/l2tp-ipsec-gateway-for-mobile-phones) on how to get it running on OpenWRT, however I don't want to go that way as I would loose hardware nat on my router (TP-LINK WDR4200) and also the least customized devices I have the better :).
To my surprise I didn't find anyone who tried to get L2TP/IPSec running on ReadyNAS.
Let's say i'm not yet very comfortable playing with kernel modules, if i know what to add then i can follow, but trying things all by myself, hmm that's gonna be interesting :)
So before I give it a try and possibly run into kernel panics slash/ reinstalling firmware slash/ factory reset :) , maybe i missed something, maybe there is some particular reason for not trying L2TP/IPSec on ReadyNAS ?
I was thinking to use openswan/stronswan and xl2tpd, any comments on that?
thanks for your feedback
mle
5 Replies
Replies have been turned off for this discussion
- it seems like for debian squeeze running L2TP/IPSec VPN is not a problem?
http://blog.bertelsen.co/2012/02/debian-squeeze-l2tpipsec-vpn-server.html
is debian etch an issue here ? - I'd not even considered using my RNAS Pro as a VPN endpoint. Nice idea, i have no technical knowledge in the area so can't help with your questions but am interested in your findings.
- Did you try Openswan? I think that Openswan has support for IPsec...
EDIT: Ooops didn't look at that link before I posted. :) - Give me a few days to check if my vpnserver addon could work on 4.2.x
- Super-poussin: Have you already checked if vpnserver addon works on 4.2.x?
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
