06-21-2010, 06:45 AM
So, not inspired by but coinciding with the discussion involving WiFi security over in Politics, I've acquired a netbook and have started looking into seriously securing the communications, both for use at home and for use elsewhere. So, that pretty much means a VPN.
I have an OpenVPN server set up on a system I have running PuppyLinux, with configuration that's supposed to make all the traffic go through the VPN. With *that* going, the client couldn't get to the internet at all, actually a good sign. Then I got the firewall set up with rules I'm pretty sure are supposed to cause the PuppyLinux machine to do NAT for the client system. Now I can get to the internet from the client.
The problem is, I'm still not absolutely certain that the wireless communication is all going through the vpn encryption. I was under the impression that when the gateway redirection was working, traceroute was supposed to show a path that goes through the vpn server somewhere, and it isn't. Based on a forum post from someone else trying to do a similar setup, I tried installing Wireshark on both the client and the server. Which showed me that *something* is definately going on. When I go to a website on the client, there's activity on the server machine, and on the client it shows all sorts of stuff involving SSL exchanges that doesn't happen normally. But that post suggested that all the traffic leaving the wireless interface on the client should be in the form of UDP packets, since I have it configured for UDP. It shows a lot more stuff. But I'm not sure that this isn't it also showing the traffic to the virtual interface formed by the VPN software. I'd have expected *that* to appear when I have it set to capture on the virtual interface, but when I do that... it shows absolutely nothing. Since I don't actually know what I'm *doing* with this program, maybe I don't have the right configuration for what I'm looking for.
So, basically. Anyone have any idea how I can tell for certain that my traffic is getting encrypted the way it's supposed to be?
-Morgan.
I have an OpenVPN server set up on a system I have running PuppyLinux, with configuration that's supposed to make all the traffic go through the VPN. With *that* going, the client couldn't get to the internet at all, actually a good sign. Then I got the firewall set up with rules I'm pretty sure are supposed to cause the PuppyLinux machine to do NAT for the client system. Now I can get to the internet from the client.
The problem is, I'm still not absolutely certain that the wireless communication is all going through the vpn encryption. I was under the impression that when the gateway redirection was working, traceroute was supposed to show a path that goes through the vpn server somewhere, and it isn't. Based on a forum post from someone else trying to do a similar setup, I tried installing Wireshark on both the client and the server. Which showed me that *something* is definately going on. When I go to a website on the client, there's activity on the server machine, and on the client it shows all sorts of stuff involving SSL exchanges that doesn't happen normally. But that post suggested that all the traffic leaving the wireless interface on the client should be in the form of UDP packets, since I have it configured for UDP. It shows a lot more stuff. But I'm not sure that this isn't it also showing the traffic to the virtual interface formed by the VPN software. I'd have expected *that* to appear when I have it set to capture on the virtual interface, but when I do that... it shows absolutely nothing. Since I don't actually know what I'm *doing* with this program, maybe I don't have the right configuration for what I'm looking for.
So, basically. Anyone have any idea how I can tell for certain that my traffic is getting encrypted the way it's supposed to be?
-Morgan.