IPsec – My LAN, Your LAN, Our LAN

For about a year I have wanted to get an IPsec tunnel between me and my parent’s.  This will allow me to drop a server there and store offsite information.  More importantly, it helps me troubleshoot their issues.  Multi-vendor IPsec never is easy, given IPsec is a standard it will always work.  I’ve been slowly learning Ubiquiti’s EdgeOS (Vyatta).  The command structure is very similar to Juniper’s JunOS.  Given that I’m not 100% familiar with EdgeOS, I’ve been using templates and code snippets from across the internet.  Like any, one cannot simply copy/paste.  These generic rule’s might not be efficient in everyone’s case.  I have modified my install heavily.  For example, I use WA8LIV.com as one of the host’s.  On consumer grade internet, my IP address could change.  Dynamic DNS updates and the tunnel fixes itself.  My parent’s are also now using Dynamic DNS.

Continue reading