On Sun, 2007-09-23 at 04:58 -0700, Richard Q. Caneda wrote: > is it possible if PPTP & OpenVPN or IPSec & OpenVPN exist in > one box. the PPTP/IPSec will be configure in the DLINK or > Linksys Router (currently purchased).
Avoid complexity unless you have a REALLY good reason for accepting it. If you accept complexity (or worse, pay for complexity) you are GOING TO PAY. Make sure that the cost is worth paying and that you're willing to pay it. If Bldg C doesn't have a hardware router that can do openvpn (although, check out Gideon Guillen's post, you might have some options there), then if you've got some old slow spare box at Bldg-C, just install linux on it and then port forward the UDP port for openvpn from the gateway at Bldg-C to the new openvpn server. or harden the spare box and then put it on the DMZ. That way, you'll have only openvpn everywhere. you can provide different subnets to the three buildings and with the right routing rules you can get from any computer in one building to any other computer in another building, or use firewalls and subnetting to set aside some secure subnets (e.g., usually you'll want the servers/PCs in your data center to be firewalled off from the rest of the network, and then allow only certain connection inward). tiger _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Read the Guidelines: http://linux.org.ph/lists Searchable Archives: http://archives.free.net.ph
