Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Control » Kerio VPN for Wireless security
  •  
Brian (GFI/Kerio)

Messages: 780
Karma: 79
Send a private message to this user
WinRoute can be configured to require internet access only to Kerio VPN clients. This requires the addition of a default route to the custom VPN routes, and also a modification to the traffic policy.

The objective is to ensure that all communication between internal computers and the WinRoute firewall will be encrypted by the Kerio VPN. This is especially beneficial in wireless networks, where encryption and authentication are often neglected.

Please feel free to comment on this post if you feel that this is a valuable solution, and you would like to see the WinRoute VPN feature more tailored to support this type of scenario.

Brian Carmichael
Instructional Content Architect
  •  
feite

Messages: 523
Karma: 0
Send a private message to this user
Yes please. Also think about placing the access point in a DMZ. The Wifi clients connect to the KWF machine with the VPN client and can have access to internet and lan depending on the traffic rules and policies.
  •  
cceballos

Messages: 1
Karma: 0
Send a private message to this user
I think that is a great Idea. At this time we have discover that wireless security is not "secure"!, but VPN is a very good solution. So, how you can configurate KWF to give access to wifi client through a VPN connection?? That supose that we have 3 Interfaces.

1 LAN (192.168.0.1/255.255.255.0)
1 WAN (Internet)
1 LAN (10.1.10.1/255.255.255.0) conected to router for WiFi Users

What is the solution?
  •  
Brian (GFI/Kerio)

Messages: 780
Karma: 79
Send a private message to this user
You must add a custom route to the VPN server of 0.0.0.0
This will force VPN clients to encrypt all connections to remote hosts.

You will also need to add 'VPN clients' in place of your wireless interface in your outgoing NAT rule in the traffic policy.

Note that you should not add such a route if WinRoute has a VPN tunnel (site to site) with another WinRoute.

Brian Carmichael
Instructional Content Architect
Previous Topic: users don t connect to internet in transparent mode
Next Topic: How can I share files between 2 PC in a LAN
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Wed Nov 22 00:28:14 CET 2017

Total time taken to generate the page: 0.00353 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.