Pertino - Is Anyone Successfully Using Any Version Above 510 with DNS/AD Connect?
-
@Dashrender said:
huh - have you asked that vendor if they are developing to be able to use Azure AD as well as legacy AD?
Not lately, thx for reminding me. Let me check!
-
@Dashrender said:
@FATeknollogee said:
@Dashrender said:
Oh i agree - and I'm trying to do the same, and I've already one it for one client.
Same question for you @Dashrender What is your "AD"?
Personally I have a Windows 2012R2 onsite AD system. VM's of course.
Same here.
-
@hubtechagain said:
yeah, i've never not had issues with it. for atleast a year or so now.
Bummer. I kept seeing everyone in SW always say how great it was and easy it is, blah blah blah. I am starting to think the greatness aspect is a thing of the past. If I can't get this thing dialed in by the end of next week, then I am just going to ask for a refund and look into another way to provide VPN services. Kinda bummed about this.
-
@wrx7m said:
@hubtechagain said:
yeah, i've never not had issues with it. for atleast a year or so now.
Bummer. I kept seeing everyone in SW always say how great it was and easy it is, blah blah blah. I am starting to think the greatness aspect is a thing of the past. If I can't get this thing dialed in by the end of next week, then I am just going to ask for a refund and look into another way to provide VPN services. Kinda bummed about this.
Do you have it deployed to everything in the environment? One thing Scott told me a while ago was that something like Pertino is not meant to be on just a device here or there - it's meant to be on all device everywhere.
-
Sounds like he's having issues with versions after 510. We stopped using VPN before that, so haven't seen those issues.
-
@Dashrender said:
@wrx7m said:
@hubtechagain said:
yeah, i've never not had issues with it. for atleast a year or so now.
Bummer. I kept seeing everyone in SW always say how great it was and easy it is, blah blah blah. I am starting to think the greatness aspect is a thing of the past. If I can't get this thing dialed in by the end of next week, then I am just going to ask for a refund and look into another way to provide VPN services. Kinda bummed about this.
Do you have it deployed to everything in the environment? One thing Scott told me a while ago was that something like Pertino is not meant to be on just a device here or there - it's meant to be on all device everywhere.
Sames goes for ZeroTier as well, just in case you were checking that one out.
-
@Dashrender I am attempting to use it for remote devices only and use their gateway feature to allow access to certain servers from those remote locations. You only have to install the client on DNS/DC servers and those clients that you want to provide access to. For the gateway, it needs to be ubuntu or centos. Pertino, in intent, is perfect for what I am trying to do. In practice it doesn't seem to do much of anything correctly.
-
@dafyre Yeah, I am aware of that, as well. Thanks.
-
@wrx7m said:
@Dashrender I am attempting to use it for remote devices only and use their gateway feature to allow access to certain servers from those remote locations. You only have to install the client on DNS/DC servers and those clients that you want to provide access to. For the gateway, it needs to be ubuntu or centos. Pertino, in intent, is perfect for what I am trying to do. In practice it doesn't seem to do much of anything correctly.
The gateway is likely part of the issue. It adds a tremendous amount of complication and isn't something that any of us have tested. So there is a chance that that is where the issues come from. In a pure mesh mode as it was always used in the past, it was solid.
-
@scottalanmiller Yeah. If I have 510 on my DCs, DNS works fine for my entire network. Later builds have really screwed me. And the gateway has never worked.
-
Are you paying for the AD add-on?
-
-
@scottalanmiller I haven't every gotten the gateway to work at all and I am almost positive that there are 2 unrelated issues I am experiencing. The 1st problem is that the pertino client (build 520+) actually prevents my DNS servers from dynamically updating host records so when a desktop on my LAN that has nothing to do with Pertino gets a new IP from my local DHCP server or is assigned a static one, DNS never updates the host record. When installing 510 or uninstalling pertino completely, it updates it immediately.
The second issue is with the gateway and how it does not allow traffic to flow through it. Traffic goes there to die.
-
@Dashrender Yes, I have Enterprise 100, which is the highest tier and includes everything. As indicated, Pertino/Cradlepoint support is baffled by the problems.
-
So if I have to dump pertino, what would you guys use in terms of a more traditional VPN? I really liked the automatic connection/running as a service aspect. Do other VPNs have this?
-
Zero Tier....
Zero Tier....
Zero Tier....
Did I mention Zero Tier?
-
-
@Breffni-Potter Thanks, I use ZT for a homelab but don't think it is quite what I want for the company.
-
@wrx7m said:
@Breffni-Potter Thanks, I use ZT for a homelab but don't think it is quite what I want for the company.
No problem, can you share your thoughts as to why?
-
In my limited experience with it, I can't seem to figure out DNS with it. Also, I am not sure that the bridging works the way I need for it to act as a gateway.
