PPTP Tunneling
From DD-WRT Wiki
Point-to-Point Tunneling with two DD-WRT
(Updated: August 27, 2006)
The next configuration was made in two wrt54g (hardware version 2.2) and firmware "DD-WRT v23 SP1 (04/13/06) std"
Scenario:
- Network A in location "a"
Router A address | 192.168.1.1 |
DHCP range | 192.168.1.100-150 |
Dyndns address | "direccion_de_A.dyndns.org" |
- Network B in location "b"
Router B address | 192.168.2.1 |
DHCP range | 192.168.2.100-150 |
Dyndns address | "direccion_de_B.dyndns.org" |
- And you wish connect to any IP of the network A or B, not mattering in what of them was connected
Configuration:
- To work fine VPN connection
- On both routers
- In "Administration" tab
- In "Management" tab
DNS Masq | Enable |
Local DNS | Enable |
Loopback | Disable |
Note: Loop back must be disable because VPN not always work when it is enable.
The image
- For network A has access to network B
- On router A
- In "Administration" tab
- In "Services" tab
- In "Administration" tab
PPTP Client Options | Enable |
Server IP or DNS Name | direccion_de_B.dyndns.org |
Remote Subnet | 192.168.2.0 |
Remote Subnet Mask | 255.255.255.0 |
MPPE Encryption | mppe required |
MTU | 1450 |
MRU | 1450 |
User Name | usernameB |
Password | passwordB |
- On router B
- In "Administration" tab
- In "Services" tab
- In "Administration" tab
PPTP Server | Enable |
Server IP | 192.168.2.1 |
Client IP(s) | 192.168.2.200-250 |
CHAP-Secrets | usernameB * passwordB * |
- For network B has access to network A
- On router A
- In "Administration" tab
- In "Services" tab
- In "Administration" tab
PPTP Server | Enable |
Server IP | 192.168.1.1 |
Client IP(s) | 192.168.1.200-250 |
CHAP-Secrets | usernameA * passwordA * |
- On router B
- In "Administration" tab
- In "Services" tab
- In "Administration" tab
PPTP Client Options | Enable |
Server IP or DNS Name | direccion_de_A.dyndns.org |
Remote Subnet | 192.168.1.0 |
Remote Subnet Mask | 255.255.255.0 |
MPPE Encryption | mppe required |
MTU | 1450 |
MRU | 1450 |
User Name | usernameA |
Password | passwordA |
Notes:
- The third octet of direction IP (192.168. thirdoctet.1) of the network A must be different of the network B
- The range of Client IP(s) must be outside of dhcp
- In the example the IP range that occurred for clients vpn ("Client IP(s)") was 192.168.x.200-250 therefore 51 VPN clients allowed
Some Images
The result in router A
The result in router B
Tip
- To monitoring and guarantee the connection you can do this
- On both routers
- In "Administration" tab
- In "Keep Alive" tab
Enable Watchdog | Enable |
Interval (in seconds) | 300 |
IP Addresses | 192.168.1.200 192.168.2.200 |
The image
Explanation: With this configuration the router will monitoring every 5 minutes (the 300 seconds) VPN server can assign an ip address and VPN client can obtain an ip address, if not the router will reboot until it can do that.
An other way to make VPN tunnel
http://www.dd-wrt.com/phpBB2/viewtopic.php?t=1767
Useful Links
- PPTP Server Configuration
- http://wrt-wiki.bsr-clan.de/index.php?title=PPTP_Server_Configuration
- HOW TO configure a WINDOWS BOX to make a VPN Connection to linksys
- http://wrt-wiki.bsr-clan.de/index.php?title=HOW_TO_configure_a_WINDOWS_BOX_to_make_a_VPN_Connection_to_linksys