Project VOLANS: Log

:: Log of things done so far ::
HOME

Click Here for Comparison Chart for different VPN solutions

DONE

Successfully updated mia.ece.uic.edu with RedHat linux 9.0. It is now up and running.[ Backup Scripts ]
Installed Red Hat 8.0 on zidler.ece.uic.edu. RH 9.0 refused to get installed on this machine, because of its old age.
Learned to compile and install a new kernel on RH 9.0 systems. You can find all the instructions here.
Ordered two more PC's and some network tools. The order should be coming in the next two weeks.
Requested IP for zidler. Recived a mail from Nick yesterday. The IP is 131.193.50.184.
Got gnomemeeting and netmeeting to interwork. A good information about using netmeeting can be found out here.
Set up a page to record the Hardware information. [ Test Bed Hardware Information ]
Successfully got the gatekeeper UP and running on mia. [ Setting up H.323 applications on RH 9.0 ]
A short tutorial on using SSH (with passwordless Login) can be found here
Steps to Add/delete users using Command Line options have been listed here
Steps to set up a VPN using PPP over SSH have been listed here.
Successfully set up a certification Authority on Mia. All the steps to follow are listed here. My personal CA certificate can be downloaded from here. You will need to save this file on a local folder, then Double click on it to install it. For unix users, use the command wget http://mia.ece.uic.edu/~papers/bin/cacert.cer to get this file. Remember that this file must be specified for any products using PKI, if you are using the certificate issued by me.
Steps to set up a VPN using PPP over SSL have been listed here.
Steps to set up a Host-to-Host VPN using FreeSwan's Ipsec. here.
Steps to set up a Host-to-Host VPN using Cipe. here.
Steps to set up a Host-to-Host VPN using PPTP. here.
Steps to set up a Host-to-Host VPN using vTun. here.
Steps to set up a Host-to-Host VPN using vTun with PPP. here.
Steps to set up a Host-to-Host VPN using openvpn here.
Steps to set up a Host-to-Host VPN using Amrita VPN here.
Steps to set up a Host-to-Host VPN using VPN daemon here.
Steps to set up a Host-to-Host VPN using tinc daemon here.
Steps to set up a Host-to-Host VPN using Htun here.
Steps to set up a Host-to-Host VPN using LinVPN here.
Steps to set up a Host-to-Host VPN using Yavipin here.
Steps to set up a Host-to-Host VPN using l2tpd here.
Installing Logitech Quick Cam Pro 4000 on Red Hat linux 9.0. here.
UDP genrator Source code. here.
Using VNC for remote desktop access on Windows and linux machines. A simple tutorial to use VNC can be downloaded from here (pdf). I have also mirrored the zip file (v3.3.3) for running VNC on windows machines. This file can be accessed here.
Getting sound on Red Hat linux 9.0 with ALSA here.
Started Experiments on Calculating overheads. here.
Setting up a dial-up link between two linux machine. here

NEED TO DO

Trying to figure our LDAP. Got a few references [ * ], but not so impressive. Will probably need to read a book. I have already installed openldap server (with berkeley Sleepycat database) on mia. I still need to figure out what these attributes and object classes are. The LDAP server will serve as an ILS server for my internal LAN. Thus I will be able to use gnomeeting to carry out audio/video conferencing between clients without having to depend on any external mechanism. Since gnomeeting is opensource, we can even put in actual code for audio/video conferencing. I guess this will serve as a great experimental test-bed for all.
Getting myself aquainted with the openSSL libraries. So reading a book on this Network Security with OpenSSL.
Need to set up a VPN. PLanning to explore the following open-source protocols:
- L2TP
- LeetNet (Requires Registering to 3rd parties.. Not worth the effort.)
Getting Aquainted with IpSec.. Appears to be a difficult beast to tame. But hopefully i should get in control soon. Currently reading this document

Interesting paragraph that i came across. taken from cipeinfo. Do a info cipe.info

There are several different places where encryption can be built into
an existing network infrastructure, corresponding to the different
protocol layers:

  1. On the "network level": Packets travelling between hosts on the
     network are encrypted. The encryption engine is placed near the
     driver which sends and receives packets. An implementation is
     found in CIPE.

  2. On the "socket level": A logical connection between programs
     running on different hosts (TCP connection; transport or session
     layer in OSI) is encrypted. The encryption engine intercepts or
     proxies connections. SSH and SSL work this way.

  3. On the "application level": Applications contain their own
     encryption engine and encrypt data themselves. The best known
     example is PGP for encrypting mail.

Low-level encryption as implemented with CIPE has the advantage that it
can be made to work transparently, without any change to application
software. In the case of encrypting IP packets, it can be built into IP
routers which usually act as "black boxes" that only route traffic
between hosts, the hosts themselves don't see at all how the routing
works. So an "encrypting router" looks exactly like a non-encrypting
one, without any difference seen by other hosts and applications. It
can thus be used in places where software changes at higher levels are
not feasible.

Low-level encryption has the disadvantage that it does not guard against
intruders on a higher level, e.g. Trojaned applications, bug exploits
in system software or rogue administrators "sniffing" on terminal
devices.

Comments and corrections are appreciated and can be sent to papers@mia.ece.uic.edu. Click here for ©opyright information.