In preparation for Maestro release, I have made the first of two videos on how to setup SoftEther for remote access. I know this has been posted before by Stu, but I'm hoping this video guide will help answer some questions those not famliar with Linux may have.
This video applies to both SmartSDR and Maestro users. Part 2 will be a setup guide specifically for Maestro users who want to do remote access from day 1 until the native VPN client is completed. Part 2 depends on Part 1, so build yourself a server ahead of time and buy two Raspberry PI's while you're at it.
This video applies to both SmartSDR and Maestro users. Part 2 will be a setup guide specifically for Maestro users who want to do remote access from day 1 until the native VPN client is completed. Part 2 depends on Part 1, so build yourself a server ahead of time and buy two Raspberry PI's while you're at it.
K6OZY, Elmer
Posted 3 years ago
Is the video available directly on YouTube? I'd like to watch fill screen, but can't from the community page. I also couldn't find it on YouTube either.
Steve G./N4TTY
Steve G./N4TTY
This format was based off of this link: http://tomearp.blogspot.ca/2013/11/setting-up-l2tpipsec-vpn-with-softether.html.
It might help as an initial cheat sheet.
It might help as an initial cheat sheet.
Thanks Michael! That seems just like what the patient needed.
Steve G./N4TTY
Steve G./N4TTY
eagerly awaiting part 2
me too!
I bet there are about 50 Maestros out there with VPN enabled :-)
Actually, no. :) We tried so it turned into necessity is the mother of invention.
Mike va3mw
Alpha Tester
Mike va3mw
Alpha Tester
K6OZY, Elmer
I have a number of spare Raspberry Pi 2s which I could use for this. Is there any real technical benefit in using the Pi 3? Apart from the built-in WiFi, I am not sure that I would need the additional performance that the Pi 3 offers in the VPN configuration.
I'm happy to be proved wrong!
David G4NRT
I'm happy to be proved wrong!
David G4NRT
Steve K9ZW, Elmer
Think you would be fine if the devices will run SoftEther and achieve the connectivity needed (I have the Raspberry Pi 3 SoftEther VPN Server cabled and the Raspberry Pi 3 SoftEther VPN Bridge Wireless).
The hardware both ends wouldn't even have to match - just the ability to run the right software.
Items we added to Chris K6OZY's routine included changing the device name on each Raspberry Pi to make them stand out in the network logs, and I had forgotten to use a low IP address to stay static. Winston KC9FVR wants to add another "field recovery" Static IP on the Server, like Chris K6OZY shows in the Bridge instructions, to make it possible to move server networks more easily.
My email is good at QRZ if I can be of any help (I followed the instructions okay!).
Good luck and hoping it fires right up for you!
BTW I have better than 20 Mbps network available both ends, which helps.
73
Steve K9ZW
Thanks Steve .. I was typing my comment as you were typing yours but you pressed submit first!!
Anyone planning to follow along with this tutorial should be aware that the way of setting static IP addresses seems to have changed. The method outlined in the video didn't work for me and I had to edit /etc/dhcpcd.conf to make eth0 have a static IP rather than getting one through DHCP!
David G4NRT (trying it on Pi 2s)
David G4NRT (trying it on Pi 2s)
It seems that in the May2016 Jessie build, they deprecate adding lines to /etc/network/interfaces and recommend adding lines instead to dhcpcd.conf (there is plenty of stuff on this available via Google).
That is what I did and it worked for me. I have the vpnserver running and am now downloading the manager.
David G4NRT
That is what I did and it worked for me. I have the vpnserver running and am now downloading the manager.
David G4NRT
Did you remember to comment out the line 'iface eth0 inet manual' and add in a paragraph beginning with the following two lines:
auto eth0
iface eth0 inet static
then followed by the lines specific for you network?
It worked fine for me just editing the 'interfaces' file.
Steve G./N4TTY
auto eth0
iface eth0 inet static
then followed by the lines specific for you network?
It worked fine for me just editing the 'interfaces' file.
Steve G./N4TTY
Yes. I do this for a living!
When my DHCP IP address was persistent, I researched the issue and found the notes about a different method.
I really don't think it matters as long as one is able to drive a persistent, static IP address.
I was just trying to highlight a problem which I encountered which I hoped would help others!
David G4NRT
When my DHCP IP address was persistent, I researched the issue and found the notes about a different method.
I really don't think it matters as long as one is able to drive a persistent, static IP address.
I was just trying to highlight a problem which I encountered which I hoped would help others!
David G4NRT
Used to do things similar to this is for a living as well, so I apologize if I gave the impression I was inferring you had done something wrong. That wasn't my intent at all.
Your point is well taken that if it doesn't work one way, try a different approach.
I was was just pointing out the fact that it worked for me in the way shown in the video, so maybe everyone's mileage will vary. It is interesting that it worked one way for me and another for you. Not that it really matters since we both have it working, but I wonder what's the real difference?
Steve G./N4TTY
Your point is well taken that if it doesn't work one way, try a different approach.
I was was just pointing out the fact that it worked for me in the way shown in the video, so maybe everyone's mileage will vary. It is interesting that it worked one way for me and another for you. Not that it really matters since we both have it working, but I wonder what's the real difference?
Steve G./N4TTY
Steve K9ZW, Elmer
After doing all update Winston KC9FVR mentioned something about this.
Between typical "I don't have a clue what you just said" and eagerness to get results I'd not captured exactly what he told me - but it was about editing a different file to get the IP set correctly.
I don't do any of this for a living and have to thank folk like those here for help.
It could be really useful to do some project notes that are inclusive of the changes you all found and some of the stuff that Chris K6OZY raced through, remembering what is instinctive for you as professionals is nearly magic for someone who seldom gets to do anything command line anymore.
Have a Maestro running on a file cabinet in my office this morning, as I want to let it run for an extended period to watch stability. All I can do to not start watching DX Spots though....
73
Steve K9ZW
K6OZY, Elmer
K6OZY, Elmer
