with TomatoUSB Toastman VPN can I setup a Site-to-Site VPN between 6 office's? or can this be done with Open VPN or PPTP?
Date: 07 Mar 2012 21:20
Number of posts: 14
RSS: New posts
You could probably do this with either, but neither really have a 'mesh vpn' solution. You could have one office act as the server, and the rest connect to it as clients. The downside is that for two client offices to talk to each other, they use the bandwidth of the server office. Or you could link 2 offices together, and connect 2 other offices as clients to each of those.
The most ideal way to create a site-to-site vpn between 6+ offices is to have a 'mesh vpn' solution. That way each office talks directly to the other. I have some binaries for 'tinc', a mesh vpn solution similar in functionality to OpenVPN. If you're interested, I could roll them into a firmware package. To pull this off, I think you would need some decent routers. Some that have atleast 8MB flash, and that also have usb ports. I haven't used tinc myself, so it would require some learning on your part if you really want to do this for yourself.
the client's don't need to talk to each other. this is for a POS system and the clients only need to talk to the server
and I'm using all RT-N16's.
Or if you think using tinc would be better I can go that route as well
In the setup you describe I think OpenVPN will suit you best. Plus having the available gui that OpenVPN has is much easier to deal with. I would recommend running in TUN mode, apposed to TAP if possible. Depends on how the POS system works. Then you would assign each location their own Subnet ie 192.168.1.1 , 192.168.2.1 192.168.3.1 etc.
I use openvpn with three servers, two vps, and four tomato routers. I would like to try to implement tinc. This would solve a bandwidth problem for sure. I would like to give this a shot. I use asus rt-n16's and e2000 exclusively. please let me know what I can do to help. This could almost be under feature requests.
I'll try to put something together soon. In the mean time I've uploaded the tinc binary. I actually compiled this on the router itself, so right now this binary will need you to install optware to run it. You'll need openssl, lzo, and zlib. Should be functional, just need to figure the configs. I haven't played much with it myself, but plan to soon too.
got it thanks….. Will have to take an afternoon soon and see how stable I can make this across the network.
EDIT: May need to install libevent as well?