On Dec 8, 2005, at 12:00 PM, AgentM wrote: > Using a key Robert sent me off-list (for obvious reasons), I was able > to successfully connect to the VPN.
Excellent. BTW, if anyone else wants to try it out, e-mail me and I'll send you the key. >>> 2) configure the client and server to use an alternate port >>> > From http://openvpn.net/howto.html#server: > > proto tcp #library blocks UDP > port 443 #library allows this port > comp-lzo #compression on > user nobody > group nobody Actually, I'd just need to modify the forwarding rules at the router. But since you mention it, are you sure the library blocks UDP? How can we verify whether the library does or doesn't? Also, can OpenVPN listen on two different ports, e.g. 1194 and 443, at the same time? I've looked through the options in the manpage[1], but don't see a clear answer whether yes or no. This is more a curiosity than anything else. I guess one could always start more than one server, no? >>> 3) figure out routing so that the client can get to the rest of >>> the >>> world using the OpenVPN server as the gateway >>> 4) configure the client to do dhcp and NAT on the second NIC >>> > > You want to do this on the eMachine, correct? To start with, yes. But since the client (like the server) will be with Knoppix + PDI, I don't see any reason why it cannot be ported to any other machine with one wireless NIC and one wired NIC, for example, a low-end laptop. > I recommend using a firewall rule builder under Linux and tweak the > resulting rules as necessary. Any recommendations? I had a look on the Knoppix CD and didn't see one. But maybe I overlooked it. > But you probably already have the ruleset laying around somewhere. Somewhere. But I'll probably Google to create them. [1] http://openvpn.net/man.html Regards, - Robert http://www.cwelug.org/downloads Help others get OpenSource software. Distribute FLOSS for Windows, Linux, *BSD, and MacOS X with BitTorrent _______________________________________________ CWE-LUG mailing list [email protected] http://www.cwelug.org/ http://www.cwelug.org/archives/ http://www.cwelug.org/mailinglist/
