Date: Thu, 15 Jan 2004 22:03:51 +1100 From: Tony Frank <tfrank@optushome.com.au> To: "Nicol?s de Bari Embr?z G. R." <nbari@unixmexico.com> Cc: freebsd-net@freebsd.org Subject: Re: Secure MSN and ICQ chat Message-ID: <20040115110351.GA13204@marvin.home.local> In-Reply-To: <23621.148.243.211.1.1074138598.squirrel@mail.unixmexico.com> References: <23621.148.243.211.1.1074138598.squirrel@mail.unixmexico.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi there, On Wed, Jan 14, 2004 at 09:49:58PM -0600, Nicol?s de Bari Embr?z G. R. wrote: > Right now i have an tunnel with IPSEC to another FreeBSD Server the one is > on a secure network and on a different building, what i was thinking to > do, was to install a proxy on the Secure FreeBSD server and configure the > MSN/ICQ clients to use that proxy so only that traffic could go out using > the secure network. > > I would like to know if there is a better option for securing this > communications, or if this idea is fine and what proxy software do you > recommend to install for doing this. If you dont mind configuring all your users then you can use a SOCKS proxy on the secure FreeBSD server. I use 'nylon' from ports for this purpose quite effectively (although only for a home network of up to about 5 clients) Another option is to simply route the MSN/ICQ traffic across to the other server. Either route everything through the ipsec link to the other server (ie make it your default route) or if you know the MSN/ICQ server IP range you can just route the specific subnets. Regards, Tony
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040115110351.GA13204>