VPN Plus Samba Making My Home Computing Environment Identical to My Work Computing Environment.

Slides:



Advertisements
Similar presentations
Encrypting Wireless Data with VPN Techniques
Advertisements

Securing Remote PC Access to UNIX/Linux Hosts with VPN or SSH Charles T. Moetului WRQ, Inc. (206)
Homework 5b: Samba. Computer Center, CS, NCTU 2 Network-based File Sharing (1)  NFS (UNIX-based) mountd is responsible for mount request nfsd and nfsiod.
Linux+ Guide to Linux Certification, Second Edition Chapter 14 Network Configuration.
Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.
Samba Integrating SMB file systems with UNIX. Samba Provides a file server compatible with Windows 9x and NT.. SMB Can function in NETBIOS name browsing.
70-270, MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.
Understanding Networks I. Objectives Compare client and network operating systems Learn about local area network technologies, including Ethernet, Token.
Network Shares and Accounts Sharing Printers, Drives, Folders – Setup Windows 95/98 Windows NT (2000, XP) Linux – Users – Groups.
Remote Networking Architectures
1 Chapter Overview Introduction to Windows XP Professional Printing Setting Up Network Printers Connecting to Network Printers Configuring Network Printers.
Virtual Private Network (VPN) © N. Ganesan, Ph.D..
Fermilab VPN Service What is a VPN ?.
Module 11: Supporting Remote Users. Overview Establishing Remote Access Connections Connecting to Virtual Private Networks Configuring Authentication.
CMSC 691X – Summer 2002 Project By Pravin D’Souza.
Installing Samba Vicki Insixiengmay Jonathan Krieger.
1 COP 4343 Unix System Administration Unit 16: file server – samba.
UNIT - III. Installing Samba Windows uses Sever Message Block(SMB) to communicate with each other using sharing services like file and printer. Samba.
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 10: Remote Access.
1 Microsoft Windows NT 4.0 Authentication Protocols Password Authentication Protocol (PAP) Challenge Handshake Authentication Protocol (CHAP) Microsoft.
VPN Scenarios © N. Ganesan, Ph.D.. Chapter Objectives.
Getting Connected to NGS while on the Road… Donna V. Shaw, NGS Convocation.
Samba
Chapter Eleven An Introduction to TCP/IP. Objectives To compare TCP/IP’s layered structure to OSI To review the structure of an IP address To look at.
1 SAMBA. 2 Module - SAMBA ♦ Overview The presence of diverse machines in the network environment is natural. So their interoperability is critical. This.
Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.
BASIC NETWORK CONCEPTS (PART 6). Network Operating Systems NNow that you have a general idea of the network topologies, cable types, and network architectures,
Guide to Operating System Security Chapter 9 Web, Remote Access, and VPN Security.
Eucalyptus Virtual Machines Running Maven, Tomcat, and Mysql.
Configuring Routing and Remote Access(RRAS) and Wireless Networking
Windows Interoperability Chris “CJ” Janneck CSE 398 – Sys Admin 4/19/2004.
Chapter-4 Windows 2000 Professional Win2K Professional provides a very usable interface and was designed for use in the desktop PC. Microsoft server system.
Chapter 7: Using Windows Servers to Share Information.
Guide to Linux Installation and Administration, 2e1 Chapter 3 Installing Linux.
VsFTP in Linux. Introduction to FTP The File Transfer Protocol (FTP) is used as one of the most common means of copying files between servers over the.
Ferry Astika Saputra Workshop Administrasi Jaringan SAMBA PROTOCOL.
SAMBA Integrating Linux and Window. What is Samba? Free suite of programs that enables flavors of UNIX to work with other operating systems such as OS/2.
Network Operating Systems versus Operating Systems Computer Networks.
Windows Interoperability. What can Samba do? Allow for peaceful coexistence between Windows and Linux/UNIX systems regarding: File sharing Printer sharing.
Samba Erik Turner CSIS 4490 Linux Admin & Security Dr. Hoganson.
New SA Training Topic 8: File System Access  Our organization uses a variety of services for accessing files on remote systems  WWW  FTP  CIFS/SMB.
Samba Advanced System Administration Course James Lwali University computing Centre Ltd, University of Dar es salaam,
Samba version What is the Samba? Samba is a suite of programs which work together to allow clients to access to a server's filespace and printers.
Module 11: Remote Access Fundamentals
FTP Server and FTP Commands By Nanda Ganesan, Ph.D. © Nanda Ganesan, All Rights Reserved.
Linux+ Guide to Linux Certification, Second Edition Chapter 14 Network Configuration.
Hands-On Microsoft Windows Server Introduction to Remote Access Routing and Remote Access Services (RRAS) –Enable routing and remote access through.
Linux Services Muhammad Amer. 2 xinetd Programs  In computer networking, xinetd, the eXtended InterNET Daemon, is an open-source super-server daemon.
BZUPAGES.COM. What is a VPN VPN is an acronym for Virtual Private Network. A VPN provides an encrypted and secure connection "tunnel" path from a user's.
Samba – Good Just Keeps Getting Better The new and not so new features available in Samba, and how they benefit your organization. Copyright 2002 © Dustin.
1 Linux Networking and Security Chapter 5. 2 Configuring File Sharing Services Configure an FTP server for anonymous or regular users Set up NFS file.
Windows-Linux Interconnection Campus-Booster ID : **XXXXX Copyright © SUPINFO. All rights reserved Samba.
FTP COMMANDS OBJECTIVES. General overview. Introduction to FTP server. Types of FTP users. FTP commands examples. FTP commands in action (example of use).
Virtual Private Network. Computer Center, CS, NCTU 2 What is a VPN  Used to connect two private networks together via the Internet.
Samba
Unit –III CHAP-I 1 Created By Asst. Prof. Ashish Shah, J.M.Patel College of Commerce.
LINUX - SAMBA
Getting Connected to NGS while on the Road…
Chapter 7: Using Windows Servers
Guide to Linux Installation and Administration, 2e
Chapter 9 Router Configuration (Ospf, Rip) Webmin, usermin Team viewer
Network Administration Module 09
Exercise 7 Samba.
LINUX ADMINISTRATION 1
Workshop Administrasi Jaringan
Samba.
Getting Connected to NGS while on the Road…
David Boyce David Darby
Presentation transcript:

VPN Plus Samba Making My Home Computing Environment Identical to My Work Computing Environment

At the Office I am running Windows 2000 (sp2) My Laptop is connected to the departmental network I can access my network files from windows the same way that I access my local files.

From Home I am not connected to the departmental network The only way to access my departmental network files is via ftp.

How to make home like work Create a Virtual Private Network (VPN) to allow me to tunnel from my house to the department via my ISP (adelphia using cable modem) Set up the network to allow windows users to access resources such as files and printers on a Unix System via Samba

Setting up VPN My local machine runs Windows Windows 2000 has VPN capabilities when using PPTP (point-to-point tunneling protocol). We needed a FreeBSD, Linux, or Solaris solution that supports PPTP. We decided on mpd, multi-link ppp daemon based on netgraph(4) a FreeBSD package

mpd s/net/mpd/pkg-descrhttp:// s/net/mpd/pkg-descr contains the port description ts/net/mpdhttp:// ts/net/mpd contains the source ftp://ftp.freebsd.org/pub/FreeBSD/ports /i386/packages-stable/All/mpd-3.7.tgz ftp://ftp.freebsd.org/pub/FreeBSD/ports /i386/packages-stable/All/mpd-3.7.tgz contains the package

mpd (continued) mpd is capable of setting up Multi-link PPP capability PAP, CHAP, and MS-CHAP authentication PPP compression and encryption Point-to-Point Tunnelling Protocol (PPTP) We implemented only what was required for this project.

mpd Installation Downloaded latest package to /root gunzip’ed the package (left in root) (un)tarred package (into root but we cleaned up the mess when we were finished) Install in the usual manner. make install Configuration

mpd Configuration There are four configuration files: mpd.conf mpd.links mpd.secret mpd.script All of these are in /usr/local/etc/mpd on gw11. Log in as root to read them.

mpd.conf This file defines what the bundles are, what the links within those bundles are, how the interface should be configured, and various ppp parameters… /usr/local/etc/mpd/mpd.conf contains the file. telnet://gw11.cs.uofs.edu

mpd.links Contains one link per simultaneous pptp connection. Ours is set up to allow two users to connect simultaneously.

mpd.secret Unencrypted list of usernames, passwords, and ip addresses for connection to the VPN. In other words, connecting to the VPN does not connect you as a USER to the network. There are methods of making this more secure

mpd.secret (cont) Here is the current file: ryan "running" /28 sid "walking" /28 When connecting to the VPN one of these username/password combinations must be used. Both of them may be used simultaneously.

mpd.script Since we did no dialup connection, this script remains one of the mysteries of the ages. There is an mpd.script.sample with 1558 lines available in /usr/local/etc/mpd on gw11 if you need to use dialup scripts.

What is Samba Samba is an open source software suite that provides file and print services to SMB (CIFS or NetBIOS) clients such as Windows 95/98, Windows NT, or OS2.

What is Samba (continued) A samba enabled Unix (or other) machine can provide the following services: Share one or more filesystems Share printers installed on both the server and its clients Assist clients with Network Neighborhood browsing Authenticate clients logging onto a Windows domain Provide or assist with WINS name server resolution

What is Samba (continued) Samba revolves around a pair of Unix daemons – smbd nmbd smbd - A daemon that allows file and printer sharing on an SMB network and provides authentication and authorization for SMB clients nmbd - A daemon that looks after the Windows Internet Name Service (WINS), and assists with browsing

Reasons to Use Samba You don't want to pay for - or can't afford - a full-fledged Windows NT server, yet you still need the functionality that one provides. You want to set up a common area for data or user directories that will be available to Windows and Unix clients. You want to be able to share printers across both Windows and Unix workstations. You want to be able to access NT files from a Unix server.

Simple Network Setup with samba

Samba Installation Samba can be installed in the usual ways (ie by ports, package, or rpm installation). Samba is also included in red-hat linux and unix distributions. Samba is supported for the following types of machines – Unix, Linux, VMS, MVS, OS/2, Stratus-VOS, Amiga, MPE/iX We chose to do a package installation on a red-hat 7.2 machine running NFS.

Samba Installation (cont.) 1 st we downloaded samba from the samba homepage into root’s home directory samba- latest.tar.gzsamba- latest.tar.gz Steps for simple installation: unzip and untar the file Cd into package’s directory Run make install with no configuration options More configuration options? Then read: docs/textdocs/WHATSNEW.txt docs/textdocs/UNIX_INSTALL.txt

Samba Installation Directories /usr/local/samba - Main tree /usr/local/samba/bin - Binaries /usr/local/samba/lib - smb.conf, lmhosts, configuration files, etc. /usr/local/samba/man - Samba documentation /usr/local/samba/private - Samba encrypted password file /usr/local/samba/swat - SWAT files /usr/local/samba/var - Samba log files, lock files, browse list info, shared memory files, process ID files

Samba Configuration The samba configuration files live in the /usr/local/samba/lib directory The main configuration file is /usr/local/samba/lib/smb.conf This file can be edited through a text editor but it is much easier to use the Samba Web Administration Tool aka SWAT ! You need to configure your system before you can use swat

Configuring Your Red-Hat System for Swat Create a file named swat in the /etc/xinetd.d directory This file should contain the following: service swat { port = 901 socket_type = stream wait = no user = root server = /usr/local/samba/bin/swat log_on_failure += USERID disable = no }

Configuring Your Red-Hat System for Swat (cont.) Add the following line into the /etc/services file swat 901/tcp # SWAT It is a good idea to limit the use of SWAT to certain hosts…For Example: In /etc/hosts.deny: swat: ALL In /etc/hosts.allow: swat: LOCAL, Now You Are Ready To Use SWAT!

What is SWAT Basically it is a visual front-end to the smb.conf file Following from above SWAT can be started by a browser through port 901 Any user may log into SWAT, but only root may edit the config Files Using SWAT Administrator login example User login example

Samba Resources You can download the latest package from here r/book/ A free online version of the book “Using Samba” Link to smb RFC ftp://ftp.isi.edu/in-notes/search.ietf.org/internet- drafts/draft-crhertel-smb-url-02.txt ftp://ftp.isi.edu/in-notes/search.ietf.org/internet- drafts/draft-crhertel-smb-url-02.txt Author – Chris Hertel Chapter 26 of “Unix Administration Handbook”

Long Range Goals Put a router in my house to attach to the Internet and allow my home network to be a subnet of the department’s network. Add disk space to my router and make my home network equivalent to the research subnet with full access to the department network.

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.