On 22 Nov 2002 at 8:42, Fanta, Ken wrote: > 5 or less needing VPN if that it is mostly for me to be able to get into > my network from home. But it would be nice if the router had some > firewall features on it.
Are your VPN clients "road-warriors", calling in from different locations all the time, or are you running your VPN clients from static IPs? If the latter, IPcop (Linux-based firewall) has a built-in VPN (based on FreeS/WAN) and is a GPL'd firewall. I have set up a VPN between my office and my house using IPcop boxes (an old Pentium and an older 486) at each end, and I can ping from 192.168.2.x (office) to 192.168.3.x (home). http://www.ipcop.org/ ... It has some downsides; one is that the IPSec keys must be installed manually at each end and another is that road-warrior support is kind of tricky. But the cost is right (just your time). I used md5sum to generate the IPsec key and carried the key home on a floppy. There is a commercial version of IPcop which reportedly has better VPN support http://www.smoothwall.co.uk/ but I haven't played with it. True commercial firewall-cum-VPN have on-the-fly IPsec key generation and are more secure -- the keys change regularly. With IPcop it's manual and therefore not done ;-) -- Angus Scott-Fleming GeoApps, Tucson, Arizona 1-520-290-5038 / fax 1-208-248-3124 http://www.geoapps.com/ AIM: AngusWSF ICQ: 165646506 --------------------------------------------------------- -- Angus Scott-Fleming GeoApps, Tucson, Arizona 1-520-290-5038 / fax 1-208-248-3124 http://www.geoapps.com/ AIM: AngusWSF ICQ: 165646506 --------------------------------------------------------- ------ You are subscribed as [email protected] Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe send a blank email to [EMAIL PROTECTED]
