PI2 as a VPN - Raspberry Pi Q&A, Help & Troubleshooting

My topology:
ISP --------> Openwrt Router
|
|
/ \
PI2 VPN. PI2 Kodi
I am confused of how to safely use a VPN. If I connect only from my Kodi Raspberry PI2 to my second raspberry PI2 that is running as a VPN server, is that enough to hide/encrypt say, an IPTV stream, if using 2048 encryption? Or do I need to connect through my router as a client, to my PI2 VPN first, to completely encrypt traffic and hide my IP?
I'm pretty new to setting up a VPN, so go easy on me. If the above scenario isn't correct what is the best way to setup an in home VPN server? I'd rather avoid paying for a third party VPN service if possible.
Sent from my p8000 using Tapatalk

kgoerbig said:
My topology:
ISP --------> Openwrt Router
|
|
/ \
PI2 VPN. PI2 Kodi
I am confused of how to safely use a VPN. If I connect only from my Kodi Raspberry PI2 to my second raspberry PI2 that is running as a VPN server, is that enough to hide/encrypt say, an IPTV stream, if using 2048 encryption? Or do I need to connect through my router as a client, to my PI2 VPN first, to completely encrypt traffic and hide my IP?
I'm pretty new to setting up a VPN, so go easy on me. If the above scenario isn't correct what is the best way to setup an in home VPN server? I'd rather avoid paying for a third party VPN service if possible.
Sent from my p8000 using Tapatalk
Click to expand...
Click to collapse
Hi there,
I am a little confused as to what you are trying to achieve with that diagram?
Normally, when you utilize a VPN, you try to connect to an arbitrary point on the internet. So you should have your Pi 2 -> ISP -> Virtual Private Server.
Your diagram where you have ISP -> Router --VPN, Encrypted--> Pi 2. Is not effective to hide your content from your ISP, due to the fact that your router and Pi 2 are encrypted.
Reply and get me more information what you are trying to achieve. Here is why I do. VPS --> Pi-VPN. Then I use connect to it when needed.

Yes

In home VPN server is good if you would like to get inside your home network from the internet.
You need outside server to encrypt data going outside your home.
Connection between VPN client and server is encrypted, connection between server and the internet ... Now that is a question for VPN provider but I guess the answer is 'not really'.
If you connect from one PI to the other running server you will have encrypted traffic in LAN but server PI will drop encryption in order for your router to understand where to pass traffic.

Related

VPN Client (cisco)

Is anyone able to reccomend a VPN client for connecting to a Cisco VPN. I have tried antha VPN but for some reason it kills my wireless connection can i cant join any AP's
Thanks
nino
Hi i too am trying to tame this beast of an issue...
still looking...
found this
http://forum.xda-developers.com/showthread.php?t=351356
I too would very much like a Cisco VPN client, and one that's fairly easy to set up where the settings correlate to my Windows client.
As far as I know, there are no Cisco VPN client for mobile devices.
However, I've successfully used a VPN Client from BlueFire Security towards a Cisco Concentrator from my previous HTC Trinity device.
/Bjørn
I managed to get a trial of the new bluefire VPN client and it works a treat
thanks!

Public IP Address??

I am trying to run one of the many FTP servers available for Windows Mobile (vxFTPSrv or ShareIT FTP) to keep some files in sync but I can't seem to figure out what public IP address my phone has. vxFTPSrv says it is listening to a non-routable 10.**** while whatismy ip says it starts with a 200.**** while DynDNS for Windows Mobile says it is 32.****. Nevertheless, none of these work nor can I get these programs to listen to the ports. Any ideas? Does the Tilt even get a public IP address from AT&T? Thanks.
Try this
I'm no pro, but had to tell the Physical address to the the tech guy at my university so he could enable my phone o use the wireless network...
... anyways, download and install a Registry Editor (I use Task Manager v2.8) you should be able to access an Ipconfig tab, where all the information is available.
I don't know if I'm in the right track.... Hope this helps? =)
jim
your pda have an ip address
using wifi router the uplink sees the routers ip
using an isp the internet sees the isp's assigned ip
http://www.ip-adress.com/
http://en.wikipedia.org/wiki/IP_address
Here is a kewl utility that is FREE.
http://www.cam.com/vxutil_pers.html
Here is the stuff it does.
DNS Audit
DNS Lookup
Finger
Get HTML
Info
IP Subnet Calculator
Password Generator
Ping
Ping Sweep
Port Scanner
Quote
Time Service
Trace Route
Wake On LAN
Whois
Another good one I use is Iper Suite.
http://tonaya.com/products/iper/index.php
For casual use the first one is probably satisfactory.
IPer is worth buying for the increased functionality and has a TFTP client.
HTH
TSoma said:
I am trying to run one of the many FTP servers available for Windows Mobile (vxFTPSrv or ShareIT FTP) to keep some files in sync but I can't seem to figure out what public IP address my phone has. vxFTPSrv says it is listening to a non-routable 10.**** while whatismy ip says it starts with a 200.**** while DynDNS for Windows Mobile says it is 32.****. Nevertheless, none of these work nor can I get these programs to listen to the ports. Any ideas? Does the Tilt even get a public IP address from AT&T? Thanks.
Click to expand...
Click to collapse
200.* would be a public IP. As would 32.*
Turn off your proxy setting in the phone and do the www.whatismyip.com thing. That will get you a more meaningfull result than anything else.
When I'm on GPRS/Edge (AT&T proxy settings in force) network I get a 66.102.186.15 IP address as reported by whatismyip.com. That resolves to alpmagr1fe06-dmz.mycingular.net. Which should be a att proxy server even tho it implies by its name its on a DMZ.
When I turn off the proxy for GPRS/Edge I get 166.195.188.15 according to whatismyip.com. That IP address will not respond to ICMP commands. So I assume it is firewalled. So it seems to me that yes you CAN and DO get a public IP address, its just that address is heavily firewalled.
You've piqued my interest, tho I cannot do anymore testing at this moment.

[Off-Topic] How do I setup a connection to my home web server?

(Don't blame me for being long-winded, I'm just explaning the situation (why I want to do all these) and also to prevent people from asking questions such as "Why do you even want to host your website at home?")
I want to pay for web hosting, but, as a student, I can't. I also want to host all my Android Development on my site, apart from XDA and Samdroid. But, I can't use a credit card (obviously, my country dosen't allow ownage of CCs before 21), and free web hosts (sorry for shouting) S*CK. Slow loading, banning because of CPU-hogging/ too many cron jobs, etc, etc... Also, my parents are paranoid about their credit card details being sold online at exorbitant prices. I do understand that web hosting is expensive, and it is not really wise to allow free web hosting, and I do not want to blame them for banning me, hence I decided to host my website from home. *catches breath* I do have some prior knowledge of fixing stuff, and whipping old parts into one lean mean computing machine. I've set up the computer, and configured my router. I can view the web site (It's good'ol wordpress) when I typed my local IP into the web browser from another computer in the home network. But, when I tried to access using the public IP from my school, I cannot enter the site. I have previously configured port-forwarding. I used No-IP's dynamic DNS client in this case. When I checked my public IP using different websites, all gave me different information. One gave me an IP with 255.244.***.***, another gave me 157.209.***.***, and others gave me 255.250.***.***
1) How do I make sure that when someone types in a URL or IP, it will show me what I want them to show?
2) Why are different websites give me different public IPs? No, I don't have a firewall, or a proxy.
We need more information:
1. Who is your internet provider
2. How do you connect? ADSL/SDSL/T1/Dial up?
3. If its ADSL/SDSL then you'll have a router (unless they've given you a USB modem for it). We'll need to know what type.
4. What's your concection speed, both down and more importantly up.
Now, assuming your ISP doesn't give you web space that you could use, then you'll need the following:
You'll need a dynamic dns service, some are free.
You'll need a router which can forward http (TCP port 80) traffic from the internet to your web server.
Once the router is forwarding http traffic to the web server, people on the internet will be able to access your website.
If you want to access it using the same address then you'll have to update your hosts file on your computer.
For windows this is in C:\windows\system32\drivers\etc\hosts
Add an entry like:
dynamic dns web address IP address of webserver
So if you've set up arikyeo.dyndns.org and your webserver's internal IP address is 192.168.0.200 then you'd add the following to the hosts file:
arikyeo.dyndns.org 192.168.0.200
xaccers said:
We need more information:
1. Who is your internet provider
2. How do you connect? ADSL/SDSL/T1/Dial up?
3. If its ADSL/SDSL then you'll have a router (unless they've given you a USB modem for it). We'll need to know what type.
4. What's your concection speed, both down and more importantly up.
Now, assuming your ISP doesn't give you web space that you could use, then you'll need the following:
You'll need a dynamic dns service, some are free.
You'll need a router which can forward http (TCP port 80) traffic from the internet to your web server.
Once the router is forwarding http traffic to the web server, people on the internet will be able to access your website.
If you want to access it using the same address then you'll have to update your hosts file on your computer.
For windows this is in C:\windows\system32\drivers\etc\hosts
Add an entry like:
dynamic dns web address IP address of webserver
So if you've set up arikyeo.dyndns.org and your webserver's internal IP address is 192.168.0.200 then you'd add the following to the hosts file:
arikyeo.dyndns.org 192.168.0.200
Click to expand...
Click to collapse
I used No-IP dynamic DNS service, with their client. But, it didn't work. I am using Singtel as my ISP, with a Linksys B/G router. I have forwarded the port 80 to the IP, and set port 80 as an exception. I can view the site locally, but not from the outside world.
Setup your no ip on their site as a port 80 forward. Forward this to the local port on your computer that you are using for the server. Log into your router and port forward the same port that you put in for the no ip into the from and to ports section and be sure its forwarding to your lan ip. After this is done then try it.
Sent from my DROID2 using XDA App
I see that you have already been told how best to start your server. I can also recommend instructions for collecting server statistics https://www.host-tracker.com/Blog/server_m/ This will come in handy for you in the future. Here you can configure notifications for server failures.

Any way to setustatic ip address?

Do we have a way yet to set a static IP address for the chromecast? Mine are rooted and using eureka rom. My router doesn't have an option to set IP address based on mac address, and there are no custom FW available for it. In know in normal android, we get options for the device to have a static IP. Is there an option maybe for that hidden away in the Eureka rom? Or are there any other suggestions to get this accomplished?
I guess you could use dhcpsrv, the PC program a lot of use to force the Chromecast to use a desired DNS without changing the router setup. Just set it up to recognize only the Chromecast MAC address. But you'd have to have dhcpsrv running each time you powered up the Chromecast.

Reroute google DNS on Netgear AC1600 modem router

Hello everyone
I have just got a netgear router, and know that, to use Netflix on my chromecast, I can set up static routing to point google's dns to the router (so 8.8.8.8/8.8.4.4 - 192.168.0.1 in my case.) Is there a way that, instead of blocking all access to the google dns servers, I can reroute any Google DNS requests to the DNS service I use (unblock-us) so that the chromecast will think it's reached Google? I just think sooner or later Google will make the app force quit if the dns lookup fails. It would be good if it's possible to make it look like the requests are returned by google as well. Any help would be greatly appreciated. I know that you can reroute using iptables in DDWRT, but I don't want to try and put different firmware on my new router just in case. Is there a way to reroute Google DNS in stock Netgear Genie firmware?
Thanks

Categories

Resources