[Asterisk-Users] Congratulations to all comunity. Success: iaxy +
openvpn + winxp routong.
Andres Tello Abrego
criptos at aullox.com
Fri Oct 15 15:42:46 MST 2004
Ok...
The scenario.
Requirements:
User do not want to switch to linux.
User do not want to use a softphone.
User will not be at a fixed position.
User is using windowsXP.
* PBX is at a dinamic dsl IP using an aulloxdns dinamic service...
http://portal.aullox.com/modules.php?name=Content&pa=showpage&pid=18
Risks Observed:
Unknown network configuration for the laptop.
Unknown network topology or position where the laptop could be connected.
Non expert user.
No name resolving capabilities of iaxy.
Path of solution:
Since iaxy lacks of name resolution, a direct link to the * pbx must be
provided, so a vpn link is the solution.
Since the network configuration or topology are unknow, ipsec, isn´t a
solution, since the laptop could after nat+firewall+nat like a cable or
private lan. The choise, openvpn, for its vpn over tcp capacity and the
windows client that can be configured as service.
The hardware configuration.
iaxy<-->network pccard <--> laptop <--> network <--vpn -->PBX.
Since you can see, between the iaxy and laptop and the vpn and laptop,
there must be setup 2 diferents networks, so, windows xp must provide
routing capabilities, this is the mayor odd...
After trying to setup nat and bridged configutarion at the windows xp,
since windows xp DOES NOT provides routing capabilites as you can see here:
Windows 2000 routing
http://www.windowsitlibrary.com/Content/405/26/toc.html
windows XP natting
http://www.microsoft.com/technet/prodtechnol/winxppro/deploy/nattrnsv.mspx
Google is your friend, and windows XP DOES have routing capabiliites..
http://www.lpt.com/windowsnetworking/regusers/w2kprout.htm#w2000
So easy things to the user, opevpn is configured as a windows xp service
http://openvpn.sourceforge.net/INSTALL-win32.html#running_as_windows_service
So, when the user configure using static or dinamic ip the internal
ethernet interface of his laptop, the openvpn stablish the vpn and setup
the proper routing, then iaxy tries to reach the * pbx using the vpn
interface as described at the routing table...
And there you have. A secure, almost unstoppable roaming iaxy user...
:)
Congratulations.
All this work is possible due both, windows and linux community.
P.D. Maybe Windows Xp could be a good S.O if it wasn´t owned by Microsoft.
Using a IAXy Unit:
http://www.digium.com/index.php?menu=iaxy
And at a windows XP.
More information about the asterisk-users
mailing list