Ubiquiti Edgerouter X VPN Setup
-
Can someone point me in the right direction to get a VPN connection setup on the Ubiquiti Edgerouter X?
I want to have all traffic going out over my network once the device is connected to the tunnel (No Split Tunnel)
I want to be able to connect computers (Windows, Linux, Mac) and Mobile Devices (iOS and Android)
-
Calling @JaredBusch and @GregoryHall
-
This is not a clear question.
Do you mean you want to use the ERX as a VPN server for various clients?
-
-
How do you keep them from seeing each other?
-
Does this help?
(http://www.dataguys.net/ubiquiti-edgemax-l2tp-setup/)
Got that from @GregoryHall -
@Dashrender said:
How do you keep them from seeing each other?
What does that have to do with anything?
-
-
@anonymous said:
@JaredBusch said:
Do you mean you want to use the ERX as a VPN server for various clients?
Yes
Then the question becomes how flexible do you want it versus how secure?
I user OpenVPN with certificates, and OpenVPN with authentication at various sites where there is now user interaction with the VPN after i set it up on their device.
If you want something a user can setup by themselves with just a username and password, then you will want to use something like the L2TP method.
I can wrote up instructions, but do not have any handy to just repost.
-
@art_of_shred said:
@Dashrender said:
How do you keep them from seeing each other?
Keep what from seeing what?
Maybe I'm confused.
@JaredBusch said:
This is not a clear question.
Do you mean you want to use the ERX as a VPN server for various clients?
I read this to mean that vairous clients would connect to a single ERX. If the idea is that each client with will have their own ERX, then nevermind.
-
@Dashrender Are you doing drugs?
Many clients would connect to 1 ERX. Client to Site.In my case, my iPhone, iPad, MacBook Pro, and Lenovo T440p.
Also, all my wife's devices.
The goal here is security, to stop from one from man in the middle attacks, etc.
-
@Dashrender said:
@art_of_shred said:
@Dashrender said:
How do you keep them from seeing each other?
Keep what from seeing what?
Maybe I'm confused.
@JaredBusch said:
This is not a clear question.
Do you mean you want to use the ERX as a VPN server for various clients?
I read this to mean that vairous clients would connect to a single ERX. If the idea is that each client with will have their own ERX, then nevermind.
VPN client
-
@JaredBusch I was thinking about OpenVPN... How hard is that to setup?
-
@anonymous said:
@Dashrender Are you doing drugs?
Many clients would connect to 1 ERX. Client to Site.Maybe, I only got 3 hours of sleep last night.
I read you post like YOU were going to be offering some sort of VPN concentration service like Pro XPN for your clients.
But clearly that's not the situation, so - whiney voice NEVERMIND
-
@Dashrender Maybe I should just use ProXPN.....
MERRY CHRISTMAS!
-
@anonymous said:
Many clients would connect to 1 ERX. Client to Site.
Although, this sentence still confuses me.
many of your clients will connect to 1 ERX, - huh?
Client to site? again, huh?
@anonymous said in Ubiquiti Edgerouter X VPN Setup:
The goal here is security, to stop from one from man in the middle attacks, etc.
Where do MitM attacks come into this?
And the OP mentioned no split tunneling - again, what are you trying to solve?
-
Basically, I don't want some "hacker" at a coffee shop to be able to intercept my traffic and use it to gain access to my accounts.
-
I want all data encrpted all the way back to my network, and then to the internet.
-
OK. Great.
JB asked:
Do you mean you want to use the ERX as a VPN server for various clients?
And you said "yes"
This is where I became confused.
It sounds like you want your own traffic to enter the internet from your home/office (wherever your ERX is).
That desire has nothing to do with your clients.
So now that we are on the same page (I hope), I'm sure the OpenVPN instructions on ubiquiti's webset should solve the problem for you.
-
@Dashrender said:
I'm sure the OpenVPN instructions on ubiquiti's webset should solve the problem for you.Can you find any? Everything I find is for site to site.
