====== 安裝 n2n VPN 程序 ======
* 目標 : 使用 n2n 建立一個跨兩個 Intranet 的 VPN, 讓 Intra-02 的 R600-NB 可以直接 ssh 連上 Intra-01 的 rdtest04-xen0
* SuperNode : rdtest04
* OS:CentOS5 x86_64
* eth0:140.92.143.17
* n2n0:10.9.9.1
* Intra-01 : rdtest04-xen0
* OS:CentOS5 x86_64
* eth0:192.168.122.100
* n2n0:10.9.9.2
* dhcp server : [[tech/dnsmasq]] (dhcp-range=10.9.9.101,10.9.9.150,12h)
* 可直接連上 SuperNode 140.92.143.17:7654
* Intra-02 : R600-NB
* OS:WinXP SP3
* eth0:172.16.100.125
* n2n0:dhcp 分配
* 可直接連上 SuperNode 140.92.143.17:7654
===== SuperNode : rdtest04 安裝設定 =====
==== 下載 n2n src 與 Compile ====
su - root
cd /usr/src
svn co https://svn.ntop.org/svn/ntop/trunk/n2n
cd n2n/n2n_v1
make
make PREFIX=/opt/n2n install
==== 設定 rdtest04 SuperNode ====
cd /etc/init.d/
wget http://svn.ichiayi.com/opensvn/opentrysoft/trysrvtool/n2nvpnd
chmod a+x n2nvpnd
chkconfig --add n2nvpnd
cd /etc
wget http://svn.ichiayi.com/opensvn/opentrysoft/trysrvtool/n2nvpnd.conf
vi n2nvpnd.conf
# General configuration
# n2n IP Address
# DHCP Client Enable -> on; Disable -> off
n2n_DHCP='off'
# If DHCP enabled the below IP will be ignored.
n2n_IP='10.9.9.1'
# n2n community name
n2n_cname='n2nrdtest04'
# Encryption key (ASCII)
n2n_pass='n2nrdtest04'
# Supermode Host:
# IP:Port
SNODE_Host='140.92.143.17:7654'
# Supernode Mode: Enable -> on; Disable -> off
SNODE='on'
SNODE_PORT='7654'
# Log file
LOGS='/var/log/n2nvpnd.log'
service n2nvpnd start
===== Intra-01 : rdtest04-xen0 安裝設定 =====
==== 下載 n2n src 與 Compile ====
su - root
cd /usr/src
svn co https://svn.ntop.org/svn/ntop/trunk/n2n
cd n2n/n2n_v1
make
make PREFIX=/opt/n2n install
==== 設定 rdtest04-xen0 Intra-01 ====
cd /etc/init.d/
wget http://svn.ichiayi.com/opensvn/opentrysoft/trysrvtool/n2nvpnd
chmod a+x n2nvpnd
chkconfig --add n2nvpnd
cd /etc
wget http://svn.ichiayi.com/opensvn/opentrysoft/trysrvtool/n2nvpnd.conf
vi n2nvpnd.conf
# General configuration
# n2n IP Address
# DHCP Client Enable -> on; Disable -> off
n2n_DHCP='off'
# If DHCP enabled the below IP will be ignored.
n2n_IP='10.9.9.2'
# n2n community name
n2n_cname='n2nrdtest04'
# Encryption key (ASCII)
n2n_pass='n2nrdtest04'
# Supermode Host:
# IP:Port
SNODE_Host='140.92.143.17:7654'
# Supernode Mode: Enable -> on; Disable -> off
SNODE='off'
SNODE_PORT='7654'
# Log file
LOGS='/var/log/n2nvpnd.log'
service n2nvpnd start
===== Intra-02 : R600-NB 安裝設定 =====
==== 下載 n2n Windows 版本 ====
* http://www.vpnhosting.cz/n2nguien.exe
下載安裝後會多出一片 TAP-Win32 Adapter V9 虛擬網卡, 以及 n2n GUI 管理介面 ICON
{{:tech:snap80.png|}} \\
{{:tech:snap81.png|}}
==== 設定 R600-NB Intra-02 ====
{{:tech:snap79.png|}} \\
{{:tech:snap78.png|}}
這樣就可以在 R600-NB 透過 putty 直接連上 10.9.9.2 Intra-01 的 rdtest01-xen0
===== 參考網址 =====
* http://www.ntop.org/n2n/
* http://www.vpnhosting.cz/index.php/N2n-at-vpnhosting.cz.html
* [[http://210.17.53.101/%E5%AF%A6%E9%A9%97%E5%B0%88%E6%A1%88/VoIP/IP_PBX/%E8%BB%9F%E9%AB%94%E5%BC%8F_IP_PBX/Asterisk/Tips/%E5%BB%BA%E7%AB%8B_Asterisk_%E9%96%93%E7%9A%84VPN%E9%80%A3%E7%B7%9A-_n2n|建立 Asterisk 間的VPN連線- n2n]]
{{tag>n2n vpn}}