SearchSearch   ProfileProfile   Log inLog in   RegisterRegister 

Multiple hotspots topology

 
Post new topic   Reply to topic    FirstSpot Forum Index -> Pre-sales Support Forum
View previous topic :: View next topic  
Author Message
asddsa



Joined: 16 Apr 2008
Posts: 7
PostPosted: Fri Apr 18, 2008 11:52 am    
Post subject: Multiple hotspots topology
Is the following topology possible?

dd-wrt
FirstSpot--PPTPVPN==PPTP1===[172.10.1.2]WRT54GL[192.168.1.1]
server server /24

..............................==PPTP2===[172.10.1.3]WRT54GL[192.168.1.2]

............................. ==PPTP3===[172.10.1.4]WRT54GL[192.168.1.3]

Clients in networks 192.168.1.0/24, 192.168.2.0/24,etc. get IP configuration from WRT54GL DHCP server. If routing is configured in WRT54GL packets from clients go to the VPN server without modification, i.e. don't pass through NAT. If the routing in PPTP VPN server is configured correctly and reply packets to each subnet go to the corresponding VPN tunnel will this system work?
Back to top
alan
Forum facilitator


Joined: 26 Sep 2003
Posts: 4435
PostPosted: Mon Apr 21, 2008 7:56 am    
Post subject:
Yes, I would think so. Note that you need to turn off NAT within your WRT54GL (if you use WRT54GL as a router).

In fact, your configuration is similar to what we call Scenario 3 with VPN tunnel. See http://www.patronsoft.com/firstspot/topologies.html and http://www.patronsoft.com/forum/viewtopic.php?t=1338 for more information.
_________________
~ Patronsoft Limited ~
Back to top
asddsa



Joined: 16 Apr 2008
Posts: 7
PostPosted: Wed Jul 02, 2008 3:12 am    
Post subject:
Implemented the above topology and got the following results:

After user from one of the subnets gets authenticated, everyone from that subnet have access to the Internet too. In the Status page the IP address
of authenticated user is 255.255.255.255

User packets are routed till Firstspot server, i.e. no NAT btw the users and
server.

What may cause Firstspot see users as having 255.255.255.255 IP address?
Back to top
alan
Forum facilitator


Joined: 26 Sep 2003
Posts: 4435
PostPosted: Wed Jul 02, 2008 4:31 am    
Post subject:
Definitely some device hiding the client IP. Please double-check using Ethereal.

Again, you need to:
1) make sure there is no NAT device between client and FirstSpot
2) using IP-based Session Handling within FirstSpot
_________________
~ Patronsoft Limited ~
Back to top
asddsa



Joined: 16 Apr 2008
Posts: 7
PostPosted: Wed Jul 02, 2008 8:27 am    
Post subject:
Thank you, it was because of MAC based session handling.

Every time Firstspot is started the RRAS routing table is changed.
After starting I add route to the subnets manually on Firstspot server
and after computer of Firstspot restart added route is deleted.

The private interface IP is 192.168.1.1 but also there is a 10.20.7.0 / 24 gw 1.1.1.1 entry in RRAS static routes.

Where within Firstspot these static routes can be defined?
Back to top
alan
Forum facilitator


Joined: 26 Sep 2003
Posts: 4435
PostPosted: Wed Jul 02, 2008 9:00 am    
Post subject:
You mean static route for Multiple Network Segments? You need to define it within Configuration Manager. Refer to chapter 4 of firstspot_guide.pdf for details.
_________________
~ Patronsoft Limited ~
Back to top
Display posts from previous:   
Post new topic   Reply to topic    FirstSpot Forum Index -> Pre-sales Support Forum All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © 2001, 2005 phpBB Group


 
© 2001-2024 Patronsoft Ltd. All rights reserved. ::::: End Users Agreement ::::: Contact Us ::::: Site Map :::::