Date: Thu, 25 Jul 2002 15:01:31 -0700 From: "Mark Koskenmaki" <bsdlists@nwbombers.com> To: "David Raistrick" <drais@wow.atlasta.net> Cc: <freebsd-isp@FreeBSD.ORG> Subject: Re: PPPoE Message-ID: <020401c23426$d7e97c80$0702a8c0@win98> References: <Pine.BSF.4.21.0207251205200.60869-100000@wow.atlasta.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Ahhh, great... What I need is some pointers to what you use to do all this. The windows clients, and what you run on the freebsd box. I have a couple FreeBSD boxes I could use. One is a dual pent pro the other a P3 667, I would assume both adequate for perhaps 20 total users with a total aggregate bandwidth of perhaps 3Mbit/sec? I'm not a FreeBSD expert by any means, nor a networking guru... but if I know what to use, and have some kind of clue how it's set up, I can usually succeed. Mark Koskenmaki webmaster: www.nwbombers.com contact me offlist at mark@gotourown.com 10 of every 8 people are mathematically challenged "Beware anyone who can fake sincerity." ----- Original Message ----- From: David Raistrick <drais@wow.atlasta.net> To: Mark Koskenmaki <bsdlists@nwbombers.com> Cc: <freebsd-isp@FreeBSD.ORG> Sent: Thursday, July 25, 2002 12:10 PM Subject: Re: PPPoE > On Thu, 25 Jul 2002, David Raistrick wrote: > > > On Thu, 25 Jul 2002, Mark Koskenmaki wrote: > > > Or, via a VPN. I have just never seen a VPN, but believed they put quite > > > a bit of extra overhead on the network, reducing throughput. > > > > > > Now, am I shooting in the dark here, or what??? > > And just to follow up on my own post... > > I assume you're an ISP. In such a situation, as long as you're not > selling your service as "secure" or anything..PPPoE should be fine. It's > no more or less secure then anything ELSE on the internet, but does let > you run your equipment in an unnumbered subnet to prevent access to your > devices...including gateways. > > It CAN be spoofed, and it CAN be listened to....but so can telnet, pop3, > http...If your customer needs/wants a secure connection (either to your CO > or to another company), then sell them a strong encryption VPN > solution. For everyone else, sell them easily-authenticated service. > > Hell, you can even sell by-the-seat to companies if things are configured > right. (though when I designed a wireless network to do this, we were > using a much less common wireless product....virtual aDSL almost. rfc1483 > split horizon issues can be used to ones advantage.:) > > > > > --- > david raistrick > drais@atlasta.net http://www.expita.com/nomime.html > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?020401c23426$d7e97c80$0702a8c0>