From owner-freebsd-hackers@FreeBSD.ORG Fri Jun 8 16:26:35 2007 Return-Path: X-Original-To: hackers@FreeBSD.ORG Delivered-To: freebsd-hackers@FreeBSD.ORG Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 80FE816A421; Fri, 8 Jun 2007 16:26:35 +0000 (UTC) (envelope-from olli@lurza.secnetix.de) Received: from lurza.secnetix.de (lurza.secnetix.de [83.120.8.8]) by mx1.freebsd.org (Postfix) with ESMTP id E40A913C4C2; Fri, 8 Jun 2007 16:26:34 +0000 (UTC) (envelope-from olli@lurza.secnetix.de) Received: from lurza.secnetix.de (ajchob@localhost [127.0.0.1]) by lurza.secnetix.de (8.13.4/8.13.4) with ESMTP id l58FlEVn084444; Fri, 8 Jun 2007 17:47:19 +0200 (CEST) (envelope-from oliver.fromme@secnetix.de) Received: (from olli@localhost) by lurza.secnetix.de (8.13.4/8.13.1/Submit) id l58FlEsb084443; Fri, 8 Jun 2007 17:47:14 +0200 (CEST) (envelope-from olli) Date: Fri, 8 Jun 2007 17:47:14 +0200 (CEST) Message-Id: <200706081547.l58FlEsb084443@lurza.secnetix.de> From: Oliver Fromme To: chat@FreeBSD.ORG, hackers@FreeBSD.ORG In-Reply-To: X-Newsgroups: list.freebsd-chat User-Agent: tin/1.8.2-20060425 ("Shillay") (UNIX) (FreeBSD/4.11-STABLE (i386)) MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-2.1.2 (lurza.secnetix.de [127.0.0.1]); Fri, 08 Jun 2007 17:47:19 +0200 (CEST) X-Mailman-Approved-At: Fri, 08 Jun 2007 18:20:36 +0000 Cc: Subject: Re: Can anybody terminate an IP-IP tunnel for me? X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 08 Jun 2007 16:26:35 -0000 Stefan Bethke wrote: > Greg 'groggy' Lehey wrote: > > How do I terminate the IP-IP tunnel at my end? > > I'm using OpenVPN for similar porposes, albeit on lower latency DSL > links. OpenVPN can run over UDP or TCP, and can work through NAT, > and even with dynamic IPs. While OpenVPN works well usually, it is generally not advisable to run it over TCP, especially if your link is not guaranteed to have 0% packet loss, which might be the case for satellite links. Running OpenVPN over UDP is fine. That problem has been discussed and explained quite often in various forums. Here's one of them: http://sites.inka.de/sites/bigred/devel/tcp-tcp.html I've used OpenVPN myself to tunnel official IP addresses to my (dynamic) DSL link at home. You need to have a server outside somewhere, of course, but that shouldn't be a problem. Here in .de you can rent a good root server for <= 50 Euro per month ("good" means you can install FreeBSD remotely without difficulty). I guess it's not much different in .au or elsewhere in the world. And if you share it with a few friends or collegues, then the costs are even less. That's how I've done it; I share a 50 Euro root server with three friends, so I pay only 12,50 per month. Best regards Oliver -- Oliver Fromme, secnetix GmbH & Co. KG, Marktplatz 29, 85567 Grafing b. M. Handelsregister: Registergericht Muenchen, HRA 74606, Geschäftsfuehrung: secnetix Verwaltungsgesellsch. mbH, Handelsregister: Registergericht Mün- chen, HRB 125758, Geschäftsführer: Maik Bachmann, Olaf Erb, Ralf Gebhart FreeBSD-Dienstleistungen, -Produkte und mehr: http://www.secnetix.de/bsd "Python is an experiment in how much freedom programmers need. Too much freedom and nobody can read another's code; too little and expressiveness is endangered." -- Guido van Rossum