I've been struggling with OpenVPN on my Vario III on T-Mobile and hope someone can throw me a bit of a lifeline.
I can connect to my OpenVPN (running on my WRT54GS router) via wifi but the problem is when I try over 3G. Even when I've specified the provider and ticked "exclusive", it manages to connect to my OpenVPN server but I get no further connectivity (to webpages etc).
As said, via wifi this config on my Kaiser works perfectly...
Code:
remote xxxxxx.homeip.net
port 22
dev tap
secret "\\Program files\\OpenVPN\\config\\secret.key"
proto tcp-client
resolv-retry infinite
nobind
comp-lzo
cipher AES-256-CBC
route gateway 192.168.xxx.xxx
redirect-gateway
dhcp-option DNS 192.168.xxx.xxx
but when tried via 3G it seems to have a problem with setting the routing..
Code:
Mon Oct 22 21:58:00 2007 ROUTE: route addition failed using CreateIpForwardEntry: The parameter is incorrect.
Just wondering if there is something either with the T-Mobile network or the Vario III which is specifically stopping me from using OpenVPN
Or are my settings misconfigured?
I've also attached a full copy of the log.
Thanks for any help you can give (Give generously)
CP
Sounds suspiciously like a NAT traversal or proxy issue to me. On the HSDPA network, there's a proxy in the picture. I don't believe that's the case for the Edge network. That could easily be the cause of the problem.
Surely once the connection has been established the NAT issue shouldn't be a problem?
TBH I thought the route addition problem was due to the software being unable to update the local routing table?
NAT traversal issues often manifest themselves as connections that look like they're established, then die immediately. The VPN participants have to know the actual IP addresses of the devices involved, and understand that NAT is happening. Proxies also need to play a role in that process since they're effectively "standing in" for your device. And they may be configured not to permit IPSec traffic at all.
What you've described sounds exactly like NAT traversal issues - the negotiation appears to go just fine, but the actual connection dies on the vine. Since the end points don't have the right data from the negotiation (actual valid addresses to build the tunnel around), the route they try to build is invalid and fails.
In your log, it's impossible to tell since the IP addresses have been all translated to xxx.xxx.xxx.xxx. But I suspect that the ones up until the "TCP connection established with..." message are all displaying valid public IP addresses, and somewhere very shortly after that they start displaying private RFC 1918 addresses.
Proxies + NAT +IPSec = small nightmares. This is one of the reasons SSL VPNs have gained significantly in popularity.
Try Hamachi vpn
https://secure.logmein.com/products/hamachi/vpn.asp
Surur
PerfAlbion said:
In your log, it's impossible to tell since the IP addresses have been all translated to xxx.xxx.xxx.xxx. But I suspect that the ones up until the "TCP connection established with..." message are all displaying valid public IP addresses, and somewhere very shortly after that they start displaying private RFC 1918 addresses.
Click to expand...
Click to collapse
You have PM
Quick update:
I've just connected my Laptop to the internet via my Kaiser using 3G.
Ran OpenVPN and it connected without a problem.
Technically this would suggest that I should be able to connect with my kaiser but theres either a problem with my config or a bug in the PPC openvpn software :S
I haven't tried on UDP yet which will be my next test....
Any ideas?
Blimey, I didn't know there was a PPC client! I'll try it to see if it works with my setup.
Well I can't even get it to talk to my server so won't be able to help !
Fire up the card in your laptop and take a look at the IP address assigned to your machine. Since it's a different service, they may not be passing you through the proxy that's in place for the Kaiser. If you've received a public address, then you're on a "different network" even though both are 3G services.
PerfAlbion said:
Fire up the card in your laptop and take a look at the IP address assigned to your machine. Since it's a different service, they may not be passing you through the proxy that's in place for the Kaiser. If you've received a public address, then you're on a "different network" even though both are 3G services.
Click to expand...
Click to collapse
?? When you connect a laptop via BT to the kaiser, (using internet sharing) it creates a NAT which the traffic is passed over through the 3G service. Essentially using the same service..
Unless you mean the "service" between the windows software & the PPC/WM software is different?
Plus how'd you mean fire up the card in my laptop?
Cheers for your help on this btw.
I'm assuming that the Laptop data service and the PDA data service are treated differently within the AT&T network. While the PDA passes through a proxy, I suspect the laptop does not.
When I say "fire up the laptop card," I mean establish a connection and look at your IP address (ipconfig from a command prompt will show it). It may be a different IP address range than the PDA receives (which you could see using VxIPConfig or VxUtils). Even if it's within the same range, it may be bypassing the proxy.
So while you're using essentially the same technology, I suspect the services are implemented very differently, and that's what we're trying to sort out.
I dont believe it!!!
I downloaded VM Net Brower checked what IP addresses were being assigned and connected successfully! Loaded up www.whatismyip.org and it came up with the proxy of my PC at home.
Unfortunately, my phone was running incredibly slow and thought it best to do a soft reset... afterwards no matter what I do, I can't connect. I just cant figure out why or replicate what I did
Argh.. this is getting to me now... next on the agenda is to try changing the port number from 22 to 8080 or 80 and see what happens.
Related
Hello all,
I have been successful in loading the WM6 ROM: works great! I have been successful at using the phone for Bluetooth DUN. I have been successfull at setting up a VPN connection to my place of employment: I can look at the RRAS server GUI and see that I have established a viable connection.
What I have NOT been successful at is getting Remote Desktop to work. RD is one of the reasons I upgraded to this ROM. Has any one been able to get their Windows desktop on their Treo? If so, how did you do it?
I can't seem to find any pertinent information on how to make this work so anything you can tell me would be a great help.
Cheers,
idyllic
http://forum.xda-developers.com/showthread.php?p=1453117#post1453117
http://forum.xda-developers.com/showthread.php?p=1451613#post1451613
joannaex said:
http://forum.xda-developers.com/showthread.php?p=1453117#post1453117
http://forum.xda-developers.com/showthread.php?p=1451613#post1451613
Click to expand...
Click to collapse
Joannaex,
thank you for the forum pointers. Alas, they did not help. I did try to load the cab file from one of the threads, but it loaded the same version of Remote Desktop Mobile that I already had. I still get the same errors encountered with the previous version. Maybe this behavior is due to the "unofficial" ROM not being fully functional in some way? I don't know. It would be interesting to hear from someone that actually got this to work.
Cheers
idyllic
PS: in occurs to me that this might be a routing issue in the 10.x.x.x/192.x.x.x space. I could verify this if there were a command prompt where I could run things like ipconfig, tracert, netstat, etc. Or a log file that could be viewed. Just wishful thoughts I suppose
PPS: Just found two great progs, one called VXIPCONFIG which give you the info you would get in you did an ipconfig /all. The other is called VXUTIL which you can do PING, TRACERT, WHOIS and a lot more. The utilities are available from http://www.cam.com/windowdsce.html.
I have been able to connect to remote desktop. What has been successful for me has been to already initiate my 3G connection then connect using remote desktop. It doesn't seem to be able to start up the connection itself.
andokai said:
I have been able to connect to remote desktop. What has been successful for me has been to already initiate my 3G connection then connect using remote desktop. It doesn't seem to be able to start up the connection itself.
Click to expand...
Click to collapse
andokia,
I am doing the exact same thing: starting my 3G connection, then my VPN connection, and lastly Remote Desktop Mobile. The RDN ALWAYS times out with one of these two errors: "Connection Status - Cannot Connect. Likely reasons are: 1. Specified computer name or IP does not exist, 2. A network error occurred while establishing a connection." So, I'm kind of at a loss here as the troubleshooting tools available are not great. Thank you for the response!
Cheers,
idyllic
Hi idyllic,
Can you access a remote desktop when a VPN session isn't active? I have used the two separately without problems but haven't tried them together.
andokai said:
Hi idyllic,
Can you access a remote desktop when a VPN session isn't active? I have used the two separately without problems but haven't tried them together.
Click to expand...
Click to collapse
andokia,
no, I cannot access any system. I have tried my home system (firewalls turned off and on). I have tried my work systems (VPN on and off). Nothing seems to work. It's really frustrating to have a tool that you know can help you, but it doesn't work: aaaaaaaaaaaahhhhhhhhhhhhhhhhhhhhhhhh!
Cheers,
idyllic
I'm assuming you're trying to use a local address because you are connecting with vpn first. Did you put the local address in the exceptions list? If not the vpn connection will disconnect anytime you try to use an address that is not in the exceptions list.
Exceptions list: start\settings\connections\connections\advanced\exceptions
then add the local url
Hope this helps. Used to be the problem I had when trying to use VPN.
chris44gw said:
I'm assuming you're trying to use a local address because you are connecting with vpn first. Did you put the local address in the exceptions list? If not the vpn connection will disconnect anytime you try to use an address that is not in the exceptions list.
Exceptions list: start\settings\connections\connections\advanced\exceptions
then add the local url
Hope this helps. Used to be the problem I had when trying to use VPN.
Click to expand...
Click to collapse
chris44gw,
yes, I'm trying to connect to a local addres, but that address isn't a URL. The address I'm entering is an IP address of the machine for which I want to get a desktop. Now maybe I'm wrong, but my understanding is that I can use Remote Desktop Mobile to get, say, a desktop/console of one of my servers.
I've been able to surf the web on the phone, I've been able to use the phone as a Bluetooth modem, I've been able to connect to each of my companies VPN servers. Still now desktop. Whether I enter a fully qualified domain name or an IP address it never works.
Now, I have a little more information. If I just connect to the AT&T 3G network I can do a traceroute to the VPN servers. If I then connect to the VPN (PPTP connection verfied and active) I CANNOT ping anything on the corp. net. It has to be a routing issue I'm thinking. It seems that it needs to be fixed on the phone side, but I can't seem to figure out where to do this.
Anyway, I appreciate the pointer about the URL exception list.
Cheers,
idyllic
That's what mine looks like. Once I'm connected vpn wise into my 2003 server I can RDP into it and another XP machine on the network through the local IP. Only thing I can think of is if you have activesync connecting to an exchange server. It might disconnect the vpn. I think you've said you're verifying the vpn connections so I might look into the firewall on the computer or make sure RDP is on for the computer (although you've probably done that). Good luck though.
chris44gw said:
That's what mine looks like. Once I'm connected vpn wise into my 2003 server I can RDP into it and another XP machine on the network through the local IP. Only thing I can think of is if you have activesync connecting to an exchange server. It might disconnect the vpn. I think you've said you're verifying the vpn connections so I might look into the firewall on the computer or make sure RDP is on for the computer (although you've probably done that). Good luck though.
Click to expand...
Click to collapse
chris44gw,
thank you for the screen-shot. I gave this a try, but no luck. We don't use exchange servers at work and I've verified that no active sync is active during the connect process. Having downloaded a couple of tools to help troubleshoot, I've noticed that I CANNOT ping anything on the internal network: this after verify that the VPN connection active and viable. I have also verified that each system that I am connecting to has RDP turned on. I guess I'll just keep experimenting. I just can't help but think that there is ONE LITTLE THING that is keeping this from working.
Cheers,
idyllic
PS: What encryption level does the Treo 750 VPN app use? 56bit? 128?
PPS: Upon further testing... when I connect to the RRAS server (and connecting to the RRAS server has NEVER been the problem) on the West Coast (Windows 2000 Server std. SP4) I cannot ping the "inside" network. When I connect to the East coast RRAS server (Windows Server 2003 SP2) I CAN ping "inside" network. In either case I still cannot get a remote desktop.
Have the same problem on Diamond
Hi all,
After upgrading to wm6.1 on O2 Diamond unable connect to Remote Desktop.
When manually connected to Internet it works perfect, but from RD Client there is always an error (dial up or Proxy settings). All other programmes can always correctly initiate internet connection via GPRS/UMTS. Via Active sync RD works always.
MFG
Sorry, never got it to work. Call me a traitor, but I now have an iPhone and everything works the way I expect it... with two major exceptions: 1. no cut-and-paste, 2. can't be used as a tethered modem without jail-breaking the phone (which I'm not willing to do).
--idyllic
Similar problem HTC Touch HD
Hi all, sorry in advance if my problem ends up being because I've missed something basic; I'm trying to setup RDC on my HTC Touch HD with no luck. Computer name is right, password is right, IP is right. Fail message:
"connection status. cannot connect. likely reasons are: 1. specified computer name or ip does not exist. 2. A network error occurred while establishing the connection."
I'm connected to my WiFi network which also has the machine i'm trying to connect to on it. I've also tried when out of network range, connecting via 3G/HSDPA. Steps I've taken:
-Enabled remote desktop in system properties on target machine. Haven't added any remote users as it already allows me (admin on target machine) and I'm using those login details to access.
-Allowed RD in the packet settings of Kaspersky antivirus, using the address as the ip of my mobile, found by going to whatsmyip.com, and name as the name I've set on the device.
-Probably unrelatedly, I've also allowed the HTC to access the wifi through the MAC address access list
I can connect via a standard windows machine on the same router (which just needs the computer name, not the IP). Have found this useful as I had the details around the wrong way, but even now it's not working. Based on the tips in the link above, I'm under the impression that I should set things up thus:
Computer: the ip address of target machine
User name: EITHER my username OR MACHINENAME/User Name, e.g. John Smith OR JOHNSPC\John Smith
Password: pw
Domain: either machinename or blank.
Anyone know if this is right / which of the options for username and domain is right?
Cheers
Dez
Help!
I have a Netgear DG834T router as provided by Sky. I have one wired and two wireless connections running into it (let's call them WD, WL1 and WL2 respectively).
On the connections page I can see all of them under "attached devices"...but now I want to connect using my Kaiser (actually an O2 XDA Stellar)
What happens...
On the Kaiser, I get an IP address (assigned by DHCP) as normal - but can't access the internet - or at least, can only access it very rarely - http://www.google.com can't be found, but http://www.bbc.co.uk can. No idea why.
On the router, under "attached devices", not only can I NOT see the Kaiser, but WL1 and WL2 also disappear. WD remains visible. The router cannot ping the IP address of the Kaiser (timed out). If I disable WiFi on the Kaiser, then WL1 and WL2 are immediately visible again. Internet connection on WL1 and WL2 works, even when they are not visible.
I HAVE connected to this network before without any problems.
What the hooting heck is going on, and how do I fix it?
Thanks!
Time to troubleshoot! What happens with this phone on another wireless network. We need to determine if it's the phone or the network. Do you have any friends with a phone like this? Can you use their phone on your network? Do you have any ROMs flashed, has this phone ever been on the network without problems?
If the phone works on another router try looking for firmware updates for the router. Those things really do need to be updated often and it could have something to do with that.
Only have access to one network :-(. Might be a couple of weeks before I can access a hotel one or something like that.
Think next door neighbour has similar phone, but different provider...will try if he'll let me!
No ROMS flashed.
It connected fine when I first had it. As far as I know, I've changed nothing since then.
2 out of 4 answered...with an option on three...I'll get back to you as soon as I've beaten up my neighbour and stolen his phone...
Joke!
There should be somewhere you can go to test that wireless. I can walk outside the building I'm in and find one.
ChumleyEX said:
There should be somewhere you can go to test that wireless. I can walk outside the building I'm in and find one.
Click to expand...
Click to collapse
You = US, me = UK. We still think the biro is a recent invention...
Neighbour's phone on my network gives the exact same problem. I've also noticed that when I click "Renew IP" on the Kaiser it doesn't work...it gives me 0.0.0.0, but will occasionally flash up the correct IP address. It's alomst as if the connection is being lost and remade every few seconds. The status ist gives me is "associated to network"...is that different to "connected"?
I've been trying to solve this on my router, but none of the settings seem to make any difference.
Same here
I get the same with the router from sky.
Kaiser says I have an IP address, 192.168.0.5, but the it doesn't show up on the attached devices on the router.
What I find that works is hit renew IP maybe twice until you get a really wierd IP address like
169.254.*.**, actually not sure if I'm picking up another network, but for some reason I don't think I am.
I can then browse the web and sync via wifi.
Really pisses me of that it says that it has an IP address but doesn't connect.
1) Make sure you dont have a proxy set up on your wifi connection on your device.
2) The 169. address is your device getting an unauthorised IP address as the router did not receive the correct encryption key from the device.
3) You can check if its an encryption thing by simply logging in to the router (192.168.0.1 in your web browser on pc) and changing the settings to turn wpa off and testing it. The routers username and password are on the card - its something like "sky" and "admin"
Yeah I agree, there is something up with that router.
Grey Area said:
Neighbour's phone on my network gives the exact same problem. I've also noticed that when I click "Renew IP" on the Kaiser it doesn't work...it gives me 0.0.0.0, but will occasionally flash up the correct IP address. It's alomst as if the connection is being lost and remade every few seconds. The status ist gives me is "associated to network"...is that different to "connected"?
I've been trying to solve this on my router, but none of the settings seem to make any difference.
Click to expand...
Click to collapse
with my router.....i have to set the wifi power mode on my kaiser to "best performance", any other setting and i get that "associated to network" ****. been this way every since the hermes and the wizard.
unwired4 said:
1) Make sure you dont have a proxy set up on your wifi connection on your device.
2) The 169. address is your device getting an unauthorised IP address as the router did not receive the correct encryption key from the device.
3) You can check if its an encryption thing by simply logging in to the router (192.168.0.1 in your web browser on pc) and changing the settings to turn wpa off and testing it. The routers username and password are on the card - its something like "sky" and "admin"
Click to expand...
Click to collapse
No, proxy set-up as the device was bought unbranded in US.
Because there are issues with this router, encryption and media streaming devices, I have only restricted the mac addresses with no encryption.
Still don't know about the 169. ip address beacuse doesn't seem to come up as am ISP.
Now then, how wierd is this?
After all these issues and kind of giving up on it as a bad job, I also noticed that out on the road, my GPRS wasn't working either - TomTom couldn't connect to the "plus" traffic service.
I get on the phone to O2 who told me that my phone hadn't been "provisioned". After one false start where they didn't seem to do anything about it, I have just (literally) had them tell me to go to the O2 Operator settings and tell it to update the "O2 UK Post Pay_GPRS" and reboot.
GPRS now works. And magically, so does my WiFi - IP address negotiated and full access to internet and my router's setup page granted. Working like a charm again.
So - seems to me it's an account setting, and nothing to do with either me poor ol' router or me nice new phone.
For completeness, I was occasionally getting the 169 IP address too, so it sounds like we have EXACTLY the same problem - suggest you get onto your service provider ASAP.
ok, first of all, i checked every single thread on this page hoping to get a solution for my problem.
HTC Diamond, D-Link DWL-900AP+ Access Point.
My Diamond can "see" the Access Point, but is unable to connect with it.
Authentification WPA-PSK
Encryption TKIP
Networkkey Manually inserted and 100% correct.
Hook set at IEEE802.1x
EAP Typ = Smartcard or security certificate (but it's greyed out)
Network Card connects to Internet
From Server given IP Adress (hook set) DHCP on Access Point enabled
MAC Filters disabled
I also played around with the available network tabs.
I have vodafone DE, vodafone internet, company network or ISP
The the slider of the energy saving modus ist set to best performance.
What the hell is going wrong????
I also owe a HTC Touch Elfin and have no problems to access my network/internet.
Any suggestions would be highly appreciated
thank you
try deleting your network saved setting from list, make sure network card connects to internet, not work, find access point, and enter your password again.
this works for me in similar situations.
works if you start fresh, and not trying to connect with the same settings. i dont know why but has saved my ass a few times.
Also, try changing the encryption from TKIP to AES and see if that works....
I have the same problem! It's something about DHCP. My Diamond connects to my home wifi onli if I set the IP (which belongs to my phone on access point) address in the properties of network adapter.
HI did you try to put the host address of a site?
write 64.233.167.99 instead of google.it in case you can see the page the problem is the dns not resolved and insert manually in your phone connection
Marcellus_pnz said:
I have the same problem! It's something about DHCP. My Diamond connects to my home wifi onli if I set the IP (which belongs to my phone on access point) address in the properties of network adapter.
Click to expand...
Click to collapse
Same here, it looks like a DHCP time-out or routing problem. I've set up a DHCP server with a small pool of adresses on the acces point itself and now my Diamond always connects correctly. Before that, my Diamond would state that i had entered a invalid security key.
diamond connects but i cannot visit any website
Hi,
I have a similar problem. My diamond gets an ip address from dhcp, connects to dwl-900ap+ but i am not able to open any website (I tried to open some web with url and with its ip address too) - tried opera and IE too. In opera i get a "could not locate remote server" error. (Looks like a DNS problem?) I am not even able to open the AP's configuration web with diamond. Every other wifi enabled equipment I tried (1 notebook with win vista, 1 with XP, 1 with debian linux, nokia n95 with symbian and e-ten m700 with win mobile 5) works without a single problem. I also tried to reset the AP and my diamond - without success.
I didn't change any setting on the AP except for setting up a WEP encryption (i know, i know, it's not a strong encryption ), the SSID and the AP's ip address. Everything else is default. My dhcp server is not the access point. DHCP runs on a similarly configured router with wifi AP (diamond connects without problem).
Any idea/solution? thanks
Hi all,
I used to use my Diamond connected via USB and the 'Internet Sharing' function to provide Internet access to my laptop running Vista without any problems whatsoever...
However I have recently upgraded to Vista and don't seem to be getting anywhere... or rather getting somewhere but not far enough!
Specifically, I can connect the Diamond to the laptop via USB and run 'Internet Sharing' on the device. Having hit Connect and connected to the Internet (confirmed my running a browser on the Diamond) the laptop detects a 'Remote NDIS Internet Sharing Device' in the Device Manager. It then adds a connection in Network Connections but seemingly-fails to get any further. It looks like the DHCP requests are falling on deaf ears and without an IP address it's not going to get far beyond that...
Anyone with any ideas? Or, at the very least, could someone confirm that they have got Internet Sharing working with Windows 7, even if they didn't necessarilly have to do anything special?
Regards,
Mathew
Typical... you think you've tried everything, you've exhausted Google and posted a forum post as a last resort plea for help.... Five minutes later you sort it! Mustn't moan I suppose... and in case anyone else hits this problem here's how to sort it:
The problem was calling out to me really - DHCP. I had Layer 2 connectivity but without establishing anything at Layer 3 it simply wasn't going to work so if statically asign the IP address then I could at least rule DHCP out of the equation to see what additional hurdle, if any, had to be then tackled.
The problem was that without knowing the address at the other end (i.e. the Diamond) then I wouldn't know what subnet to put my laptop in. However, this all worked fine on Vista so I fired it up and ran Wireshark (network packet sniffer) and could see that the laptop was being given an IP address from the 192.168.0.0/24 subnet and that the other end (whether that be the Diamond or some virtual device that at least representa it) was sat on 192.168.0.1. Strangely, the other end had a MAC address of 82:00:60:0F:E8:00 and the laptop 80:00:60:0F:E8:00 - whilst they're not globally assigned this must be what Microsoft use on the local link for these types of connections.
So, back to Windows 7, I fired up Internet Sharing and connected to my ISP. I now had a LAN connection listed on the laptop under Network Connections so I forced a static address assignment by right-clicking it and selecting Properties > Internet Protocol Version 4 (TCP/IP) > Properties and assigning the following:
IP Address: 192.168.0.80 (choose anything within 192.168.0.2-254 but stay away from anything you might already have assigned to other connection e.g. wireless/wired Ethernet etc)
Subnet Mask: 255.255.255.0
Default Gateway: 192.168.0.1
DNS Server: 192.168.0.1
Hit OK and then, being the Microsoft way, you will likely need to bruteforce the new application of the new setting by disconnecting and reconnecting the Internet Sharing connection. The LAN connection on the laptop will disappear and reappear, hopefully with a static address assigned (right-click it and select Status - DHCP should be disabled).
I still don't know why DHCP was failing but regardless I've got what I wanted - shared access to the Internet!
Cheers,
Mathew
Nice one, thanks for sharing.
I have a rooted N1 with cyanogen 5.0.4.1 on it.
I'm studying abroad this semester, and the university I'm at seems to have done everything they could to prevent me from connecting my phone to the internet on their network.
There is a wireless network, but it doesn't reach my room, and there's a proxy; I haven't been able to get any of the various proxy apps to work with it, at all. On a somewhat related note, since moving to cyanogen I'm not able to connect to that network anymore (wpa enterprise, tls/pap/user+pass). No real loss, since it didn't work as I couldn't get the proxy going.
The rooms have ethernet, with a static IP and mac filtering, and of course the same proxy. In addition, on the wired network in the rooms you have to connect to a vpn in order get anything other than the school's intranet
With cyanogen's rom, I have been able to connect my phone to my computer's ad-hoc network by giving it the parameters (IP, gateway, netmask, dns), that were provided to me, but I can't download anything. My only guess as to why that's not working is their static IP/mac filtering combo is not playing nicely.
I haven't ever delved very deeply into networking type stuff such as proxies, ssh tunnels, etc, so these two ideas of mine could be completely unworkable, but what I've been able to come up with is:
1. Is there a way to have my laptop keep handling all the proxy/ip/vpn nonsense, and just route http data to and from my phone? I've never dealt with ssh or anything of that sort, but I run linux so it should be pretty trivial to get it set up on the laptop's side of the equation.
2. Failing that, I'm allowed to have 3 devices with 3 different mac addresses, each of which is given a separate IP address, so I give the people in charge of the network the mac address for my phone and get an IP address for it. Then, connect to my laptop's ad-hoc network, which is on IP #1, and go to the advanced wifi settings on my N1 and set up a static IP with IP #2. Does that work, at all? This of course doesn't account for the vpn at all, but if it does in fact work I'd then move on to that.
What a ****ing brain-buster. Goodluck!
As an update, I can use cyanogen's included tethering ability, in conjunction with ConnectBot, to ssh from my phone to my computer (got that working after a bit of work, and learned something new). However, when I try to set up port forwarding in ConnectBot, it doesn't work; I don't know which ones to forward, whether to choose local or remote, and if I try to forward something below 1024 it gives me an error because of that. Does anybody know what ports I need to forward, and how to do that properly with ConnectBot?