On 8/15/05, W I M <[EMAIL PROTECTED]> wrote: .. > use routers with vpn end-point support on all branches. use that > end-point feature to connect them together and form a 'single' lan. then > you won't have to have a vpn server in your head office nor vpn clients > in your branches. > > the linksys BEFSX41 (orly probably meant this model) supports two > end-point tunnels so in theory you can even form a ring for fault > tolerance. the RV series supports more and has a second internet link > for redundancy.
ahh. I was aware that the BEFSX41 could do VPN endpoints. It didn't occur to me that you could set it up in a ring topology. That *would* work -- but if any one of your offsite links went down, it would break the ring (unless you have two links per site). the advantage of just using the BEFSX41 as a VPN client and having a separate VPN concentrator is that, if one offsite link goes down, ONLY that site would go down. of course if the VPN concentrator goes down, or the link of the site with the concentrator goes down, everybody's dead. but coming from an ISP-centric mentality, the centralized VPN concentrator still holds more appeal to me. as for the other poster's question about whether you can install daemons on a Linksys WRT54G or WAP54G: it only has 16MB of flash, that's just enough for busybox and a few daemons. so you CAN install additional stuff, but not *much* additional stuff. also the processor is quite weak (probably in the 20MHz to 40MHz range). but what do you expect from the 4000-peso appliance? _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Read the Guidelines: http://linux.org.ph/lists Searchable Archives: http://archives.free.net.ph
