If the two machines have static IP addresses, I'd go with CIPE:
http://sites.inka.de/sites/bigred/devel/cipe.html
It's very easy to install and set up. (Recent RedHat versions come with
an RPM for version 1.4 of CIPE; I don't know about other distros. The
new 8.0 version even includes a GUI configuration tool for CIPE in its
network configuration tool.)
CIPE consists of a loadable kernel module and a daemon that manages the
connection. Configuration consists of nothing more than a file listing
the local and remote hosts real and VPN addresses, the UDP ports on each
machine where CIPE is listening, and a shared secret, usually an MD5
hash (e.g., "ps aux | md5sum" will do). You can set up multiple tunnels
if needed.
The traffic is encrypted with Blowfish, then encapsulated in a UDP
packet for transmission to the remote host. The remote extracts the
payload and decrypts the traffic. There's almost no visible overhead
from this process, probably because the developer, Olaf Titz, wrote his
own implementation of Blowfish in assembler.
There's also a public-key implementation (PKCIPE), but I haven't needed
to use it. The simple shared-secret method works fine for me.
CIPE has an active user mailing list; you can browse the archives at:
http://marc.theaimsgroup.com/?l=cipe
Have fun!
Peter
On Fri, 2002-09-27 at 10:16, Gustavo Gouvea wrote:
> Hi,
>
> I was wondering if anyone can tell me what is
> the best choice for establishing a VPN connection beteween
> 2 linux Boxes?
