Date: Wed, 9 Aug 2006 12:42:25 -0500 From: Jonathan Horne <freebsd@dfwlp.com> To: Odhiambo Washington <wash@wananchi.com>, freebsd-questions@freebsd.org Subject: Re: FreeBSD as a VPN Server/Router Message-ID: <200608091242.25563.freebsd@dfwlp.com> In-Reply-To: <20060809173312.GA45250@ns2.wananchi.com> References: <20060809173312.GA45250@ns2.wananchi.com>
next in thread | previous in thread | raw e-mail | index | archive | help
there is a freebsd based project called pfsense (.org) that would suit your needs perfectly. ive been running it for quite a while now, and i think its the best thing since sliced bread. i have a IPSec WAN between 2 sites (my apt, and my servers that are at a colo). tons of features that are found on other expensive firewalls, are included! cheers, jonathan On Wednesday 09 August 2006 12:33, Odhiambo Washington wrote: > I am going to venture into the field of the security gurus so help me > God! It looks like I am gonna get stuck in wet cement, I can feel it;) > > I have two sites, siteA and siteB. Each site has a horde of Windows PCs > behind a FreeBSD box, which acts as a firewall/router/proxy/everything:) > Each site has got a dedicated connection to an ISP. At the moment it's > the same ISP, if that matters, but my thinking is that it can be any > ISP. > > I have a challenge of establishing a WAN between the two sites. They > are geographically apart. In this scenario, siteA has several > applications running on several windows servers which are behind the > FreeBSD box. > The challenge is to allow siteB to access these applications securely > via the WAN setup. VPN comes straight to mind, but this is a new area > to me. > > The boxes are both FreeBSD 5.5-STABLE. > > I am looking for pointers/clues on how to do the setup in a clean way, > while adhering to K.I.S.S as closely as possible. > > If extra hardware (other than the FreeBSD boxes) is required so that > the WAN is efficient, I'd be happy to know. > > I am very optimistic on pulling this one off, since I belong to a > community full of security experts (FreeBSD users). > > PS: I am already googling, perhaps with the wrong keywords:-) > > -Wash > > http://www.netmeister.org/news/learn2quote.html > > DISCLAIMER: See http://www.wananchi.com/bms/terms.php > > -- > +======================================================================+ > > |\ _,,,---,,_ | Odhiambo Washington <wash@wananchi.com> > > Zzz /,`.-'`' -. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com > > |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922 > > '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121 > +======================================================================+ > > Who messed with my anti-paranoia shot? > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200608091242.25563.freebsd>