Hi,
I think there's no magic here. If NIC 1 is set up via VPN and NIC2
[wireless or whatever] and you use NIC2 as a NAT service to share
your VPN on NIC1, all packets will go through VPN.
I think it will work as you want out of the box by using Sharing preferences.
Best,
Scott
That's how I did it in FreeBSD, though with two NICs and not wireless.
As an aside, I understand that the Mac will do WPA as a wireless
client but only WEP as a wireless access point, which I don't like.
But regarding your idea: My question is more about how to make this
end route packets through the VPN for my entire LAN. I confess I
don't remember very well how that works, though I know it included my
making mpd (on FreeBSD) add a route to the machine's routing tables.
Maybe the only difference between point-to-point (or remote-node) VPN
access and LAN-to-LAN is a routing table change? I thought there was
more to it. Sounds like I need to learn (or relearn) what I'm doing.
:-)
On Mon, Jun 16, 2008 at 10:52:59AM -0400, Scott Bresnahan wrote:
Hi,
I am not aware of a software solution to this, but from a hardware
point, if you have an additional ethernet card, usb or even wireless,
you could use your mac as a router, where the VPN went over one
ethernet interface, and your lan was over the other, sharing your
VPN connection. You should be able to test this easily by using the
builtin ethernet as one interface and your wireless airport card as
another. You would want to share your internet connection from the
Sharing preferences pane. Of course, this limits you to the slower
speeds of wireless, but is a good proof of concept.
.
Good luck.
--Scott
Again not sure if this will relate to most people here, but just in
case...
I see that the Mac can join a PPTP or L2TP VPN for itself, but I want
it to put my entire LAN on a VPN. I already have the other end of the
VPN prepared for this (it runs on FreeBSD), though sadly I can only do
PPTP at this point, not L2TP. I'm wondering if there's a way to make
the Mac handle this at my local end so my other machines become part
of the larger network. I did this with a utility called mpd in
FreeBSD, but the FreeBSD box is being slowly decommissioned here.
--
Doug Lee [EMAIL PROTECTED]
SSB BART Group [EMAIL PROTECTED]
http://www.ssbbartgroup.com
"If you refuse to be made straight when you are green,
you will not be made straight when you are dry." {African}
--
--Scott
--
Doug Lee [EMAIL PROTECTED]
SSB BART Group [EMAIL PROTECTED]
http://www.ssbbartgroup.com
"Our chief want in life is somebody who will make us do what
we can. {Ralph Waldo Emerson}
--
--Scott
