Hi,
I don't think it's possible after some reading but if someone can clarity that would be great...
I VPN to the SE Server. I can access all devices on the attached physical network. I cannot access the SE server's physical IP address though.
This is a Ubuntu OS running Python / web server. Once the VPN client is connected it cannot access the web pages hosted on Ubuntu.
I believe due to security this is by design, but is there any way for the VPN client to access services / ports / etc when you're using SE on the same server as a web server (or other services)?
Thanks
Chris
VPN Client access other services on SE Server
-
- Posts: 18
- Joined: Sun Aug 05, 2018 11:38 am
-
- Posts: 329
- Joined: Wed Sep 18, 2013 1:49 pm
Re: VPN Client access other services on SE Server
cmpts_cpeacock - I VPN to the SE Server. I can access all devices on the attached physical network. I cannot access the SE server's physical IP address though.
Do you mean you can access all devices on the remote network ( devices where the vpn serves is located ) or your local network (devices where the client is located)?
Do you mean you can access all devices on the remote network ( devices where the vpn serves is located ) or your local network (devices where the client is located)?
-
- Posts: 18
- Joined: Sun Aug 05, 2018 11:38 am
Re: VPN Client access other services on SE Server
Hi,
YEs - I can access all devices on the attached physical network. This means what the SE server is connected to on the physical network, I can access all those devices.
I cannot access the SE server on the physical server IP though.
Sounds like you have the same issue, which as previously mentioned seems to be by design.
If anyone has a workaround that would be great!
Chris
YEs - I can access all devices on the attached physical network. This means what the SE server is connected to on the physical network, I can access all those devices.
I cannot access the SE server on the physical server IP though.
Sounds like you have the same issue, which as previously mentioned seems to be by design.
If anyone has a workaround that would be great!
Chris
-
- Posts: 329
- Joined: Wed Sep 18, 2013 1:49 pm
Re: VPN Client access other services on SE Server
I am not sure about Linux as all my experience is with SE on windows based OS. However I DO NOT have this issue.
When I use a SE client to connect to my SE server VPN. The client is able to access the "VPN Server" and all "attached shared devices" on the remote network using the VPN tunnel. I am also able to access any local network Shares at the client location as well.
I assume you created the " local bridge" as you stated you have access to all attached devices other then the SE Server machine?
Can you ping the SE server machine through the VPN?
When I use a SE client to connect to my SE server VPN. The client is able to access the "VPN Server" and all "attached shared devices" on the remote network using the VPN tunnel. I am also able to access any local network Shares at the client location as well.
I assume you created the " local bridge" as you stated you have access to all attached devices other then the SE Server machine?
Can you ping the SE server machine through the VPN?
-
- Posts: 18
- Joined: Sun Aug 05, 2018 11:38 am
Re: VPN Client access other services on SE Server
Hi,
I used SecureNAT. Yeah Linux / Ubuntu.
I think Windows is better at working out this sort of networking, but Linux applies some separation.
Chris
I used SecureNAT. Yeah Linux / Ubuntu.
I think Windows is better at working out this sort of networking, but Linux applies some separation.
Chris
-
- Posts: 329
- Joined: Wed Sep 18, 2013 1:49 pm
Re: VPN Client access other services on SE Server
Oh I see "secureNAT" is doing just what it is supposed to do Then. It isolates any VPN connections from the Local network. Basically allow you to create a separate network.
"Local bridge" connects the local network to the virtual HUB and would allow access to the local network to the clients.
"Local bridge" connects the local network to the virtual HUB and would allow access to the local network to the clients.
-
- Posts: 18
- Joined: Sun Aug 05, 2018 11:38 am
Re: VPN Client access other services on SE Server
This is sorted. Now using Local Bridge. Thanks for the input!
This is ARMBIAN OS so had to do a bit of reading to get it working, but essentially:
- Create a SE bridge
- Create a TAP address
- Install and enable dnsmasq to act as the DNS and DHCP
- create init.d service with the TAP IP
- tell systemd-resolved not to use DNS
Lots of guides out there but based on these too:
# references
# http://blog.lincoln.hk/blog/2013/03/19/ ... er-on-vps/
# http://blog.lincoln.hk/blog/2013/05/17/ ... al-bridge/
This is ARMBIAN OS so had to do a bit of reading to get it working, but essentially:
- Create a SE bridge
- Create a TAP address
- Install and enable dnsmasq to act as the DNS and DHCP
- create init.d service with the TAP IP
- tell systemd-resolved not to use DNS
Lots of guides out there but based on these too:
# references
# http://blog.lincoln.hk/blog/2013/03/19/ ... er-on-vps/
# http://blog.lincoln.hk/blog/2013/05/17/ ... al-bridge/