Re: VPN suggestions wanted

[tandernam <tandernam () gmail com>]

Thanks for all the responses. Hamachi is interesting because it looks
like it uses a mediation server to punch through any firewalling/NAT
going on. For the rest of you running software VPN, what is your
networking setup like?  Do you just have the box sitting behind the
modem/router in the DMZ?

On 9/19/07, Michael T. Babcock <mike () triplepc com> wrote:
> On 9/15/07, *tandernam* < tandernam () gmail com
> <mailto:tandernam () gmail com>> wrote:
> >     interested to hear from anyone who is running a good small-scale
> >     (please don't start talking about radius servers...) software gateway.
> >     They're currently running NAT off their soho modem/router on a DSL.
>
> We run many small VPN servers on Linux + OpenSWAN.  OpenSWAN does the
> job well, its an IPSec implementation with good stability in the field.
> We configure our tunnels manually but there are several bootable CD type
> distributions that offer a firewall + IPSec tunneling solution for
> running off PC-type hardware with a web interface.
>
> I can't recommend any personally, I don't use them.
>
> Our sites are mostly DSL and/or cable modem and/or wireless and/or
> optical connections to the Internet with small (under 50 user) LANs,
> usually with a primary site with a fixed IP address and road-warrior
> style dynamic IP remote sites connecting in a star topology.
> (Personally, I'd love every site to have a fixed IP address for
> simplicity but its not always available or cost efficient).
>
> --
> Michael T. Babcock
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards