LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 05-08-2005, 07:42 PM   #1
meadensi
LQ Newbie
 
Registered: Feb 2005
Posts: 18

Rep: Reputation: 0
VPN..would I really need 4 boxes?


Following on from another thread...

It has been recommended that a firewall be implemented on a separate box. It has also been recommended (Ziegler 2002) that VPN be implemented on a separate box behind the said firewall. If we are connecting two subnets across the Internet (as opposed to single roaming client or "road warrior") then this means we need 2 x 2 =4 boxes. This seems rather a lot.

Also, what software would I install on the VPN boxes. I know what to do with the firewalls, its simply a matter of iptables rules, a simple masquerade and enable ip forwarding. But what is the software/daemon/application to be run on the VPN boxes?

Would it be seemless? Many Netgear and Linksys boxes boast that no client software is required at all, does this mean all network traffic such as SMB traverses automatically? (That would be pretty seemless)

I actually don't mind giving money to Linksys or Netgear. I only use Linux to avoid giving money to Mickey$oft. I would prefer to buy some kit than to mess around with recompiling kernels. I am seriously considering buying a pair of Netgear FVS318. Can any one recommend an alternative solution?

I have tried to Google on this subject but have not seen a clear and obvious answer. Any offers?

Regards,

Meadensi


Bibliography:
Appendix C, Linux Firewalls, by Robert Ziegler ,2nd Edition, 2002, ISBN 0-7357-1099-6
 
Old 05-09-2005, 05:15 PM   #2
jrochamtz
LQ Newbie
 
Registered: Apr 2005
Location: México
Distribution: fedora
Posts: 12

Rep: Reputation: 0
I just use one box for firewall and vpn client-server, and usually for file store.

I prefer openvpn, because here in mexico, the unique dsl supplier some times blocks udp ports, then openvpn has several good features.

- NO KERNEL MODIFICATIONS
- safe use ssl libs
- flexible can use any port (tcp-udp)
- user certs
- you can configure it to work with dynamic dns
- has a resolv-retry option

and some other i don't remember. Greetings!!

Last edited by jrochamtz; 05-09-2005 at 05:17 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
VPN: linux VPN server behind Linksys router hamish Linux - Networking 14 08-25-2005 08:42 PM
VPN Question Win98->internet->Router->Linux VPN Server->Win2k Server patrickrea Linux - Networking 1 08-10-2004 02:09 AM
How do i connect Ciscos VPN client to Checkpoint VPN server Klas Linux - Networking 1 11-29-2003 08:00 AM
win2000 boxes cannot map but winnt boxes can - same user! starbeetlechick Linux - Networking 0 07-24-2003 07:24 AM
MASQ VPN to VPN Router hakcenter Linux - Networking 0 06-26-2003 04:14 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 03:55 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration