Date: Wed, 09 Aug 2006 13:18:42 -0500 From: Eric Schuele <e.schuele@computer.org> To: Odhiambo Washington <wash@wananchi.com>, freebsd-questions@freebsd.org Subject: Re: FreeBSD as a VPN Server/Router Message-ID: <44DA2702.9030804@computer.org> In-Reply-To: <20060809173312.GA45250@ns2.wananchi.com> References: <20060809173312.GA45250@ns2.wananchi.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 08/09/2006 12:33, Odhiambo Washington wrote: > I am going to venture into the field of the security gurus so help me > God! It looks like I am gonna get stuck in wet cement, I can feel it;) > > I have two sites, siteA and siteB. Each site has a horde of Windows PCs > behind a FreeBSD box, which acts as a firewall/router/proxy/everything:) > Each site has got a dedicated connection to an ISP. At the moment it's > the same ISP, if that matters, but my thinking is that it can be any > ISP. > > I have a challenge of establishing a WAN between the two sites. They > are geographically apart. In this scenario, siteA has several > applications running on several windows servers which are behind the > FreeBSD box. > The challenge is to allow siteB to access these applications securely > via the WAN setup. VPN comes straight to mind, but this is a new area > to me. > > The boxes are both FreeBSD 5.5-STABLE. > > I am looking for pointers/clues on how to do the setup in a clean way, > while adhering to K.I.S.S as closely as possible. The FreeBSD Handbook has a chapter on this: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ipsec.html HTH. > > If extra hardware (other than the FreeBSD boxes) is required so that > the WAN is efficient, I'd be happy to know. > > I am very optimistic on pulling this one off, since I belong to a > community full of security experts (FreeBSD users). > > PS: I am already googling, perhaps with the wrong keywords:-) > > -Wash > > http://www.netmeister.org/news/learn2quote.html > > DISCLAIMER: See http://www.wananchi.com/bms/terms.php > > -- > +======================================================================+ > |\ _,,,---,,_ | Odhiambo Washington <wash@wananchi.com> > Zzz /,`.-'`' -. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com > |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922 > '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121 > +======================================================================+ > > Who messed with my anti-paranoia shot? > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > -- Regards, Eric
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44DA2702.9030804>