LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 02-04-2010, 03:17 PM   #1
catkin
LQ 5k Club
 
Registered: Dec 2008
Location: Tamil Nadu, India
Distribution: Debian
Posts: 8,578
Blog Entries: 31

Rep: Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208
Remote access to LAN when public IP is dynamic?


Hello

Is it possible to provide remote Windows users access to a LAN via the Internet when the LAN itself is connected to the Internet via a SOHO router that is assigned an IP address dynamically?

An LQ thread from 2004 includes a suggestion to use VPN and DynDNS.com. Is that still a good solution? Are there any security issues?

Assuming:
  1. VPN is a good choice.
  2. DynDNS.com or similar can be used to give remote clients the public IP address of the SOHO router.
  3. the SOHO router is configured to forward VPN traffic to a Linux system acting as the VPN gateway.
then, for a LAN of ~20 IP nodes and less than 5 simultaneous remote clients, are there any other VPN server software solutions to consider other than OpenVPN, Openswan and strongswan?

Would there be significant advantages in using a router with VPN server capability?

Best

Charles
 
Old 02-04-2010, 03:39 PM   #2
rweaver
Senior Member
 
Registered: Dec 2008
Location: Louisville, OH
Distribution: Debian, CentOS, Slackware, RHEL, Gentoo
Posts: 1,833

Rep: Reputation: 167Reputation: 167
I really like pix/asa devices for a firewall/vpn termination device, fortinet makes some nice products that function in a similar way and for a better price.

That being said the solution you're looking at is perfectly acceptable so long as your firewall and vpn are configured correctly. I think openvpn is about the best mix of security, ease of setup, and such of the various opensource vpn products.

Last edited by rweaver; 02-04-2010 at 03:42 PM.
 
1 members found this post helpful.
Old 02-05-2010, 09:43 AM   #3
catkin
LQ 5k Club
 
Registered: Dec 2008
Location: Tamil Nadu, India
Distribution: Debian
Posts: 8,578

Original Poster
Blog Entries: 31

Rep: Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208
Quote:
Originally Posted by rweaver View Post
I really like pix/asa devices for a firewall/vpn termination device, fortinet makes some nice products that function in a similar way and for a better price.

That being said the solution you're looking at is perfectly acceptable so long as your firewall and vpn are configured correctly. I think openvpn is about the best mix of security, ease of setup, and such of the various opensource vpn products.
Thanks for your advice, rweaver

I'll look into pix/asa devices.
 
  


Reply

Tags
connectivity, dns, dynamic, ip, remote, vpn


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Cannot access own public web and mail server from LAN addresses lannyr Linux - Networking 14 08-06-2009 09:09 AM
Dynamic DNS and public IP addresses bubblenet Linux - Networking 2 10-21-2008 03:57 AM
sharing VPN access with lan + after vpn connected unable to ping lan/public ip xxx_anuj_xxx Linux - Networking 1 03-14-2008 02:50 AM
MySQL remote access from Dynamic IP Address via phpMyAdmin Swene Linux - Networking 1 05-21-2002 06:02 PM
How to access hosts from LAN through public ip? mkostrze Linux - Security 4 04-26-2002 09:34 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 01:44 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration