RE: VPN from one Win2k host to a FreeBSD network?
> Allow me to ask this once again also then. In my situation, I > have my FreeBSD > box here at home. Periodically I need to VPN into my work. > > Here is the layout: > > FreeBSD (home via DSL) ---> (Inet) ---> (Cisco PIX) ---> (Work net) > IP via DSLOutside > IP/Inside IP > I could be talking totally out of my *** here because I don't use PIX's, but I seem to recall newer versions of the PIX software supporting MS's PPTP. If that truly is the case, then MPD should work fine since it can be both a client and a server. This is why, for most offices, I recommend using Snapgear.com products. They're great for offices using T3 or less, have all the firewalling you want and no-per-user-license-fee ipsec and pptp support (although # of tunnels are limited, but that's more a hardware-limitation thing). And they're cheap as heck. If you're paid anything decent, the time it'll take you to get this figured out will have paid for a Snapgear box twice over. :) Good luck! Brent ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: VPN from one Win2k host to a FreeBSD network?
On Monday 09 June 2003 08:43 pm, David Kelly wrote: > Thanks! I knew there had to be something out there but in the wealth of > ports, I couldn't find it. Allow me to ask this once again also then. In my situation, I have my FreeBSD box here at home. Periodically I need to VPN into my work. Here is the layout: FreeBSD (home via DSL) ---> (Inet) ---> (Cisco PIX) ---> (Work net) IP via DSLOutside IP/Inside IP Under my old Windows2000, I used the VPN Client provided my Cisco. I have looked at a few ports, and the Linux client by Cisco. And I can't come up with anything. The Linux client seems to depend on, and look for a Linux kernel, 2.2.4 I think. Does anyone have an easy way for me to obtain the same as I did with my W2K box. As it is right now, I hang on to W2K just for that purpose. To VPN in to the company. If only I can rid this beast once and for all so I could have a test box for 5.x (Evil Grin) Thanks all Chris > > On Monday 09 June 2003 08:20 pm, Brent Wiese wrote: > > Use MPD (its in the ports) for PPTP support, which is built into w2k. > > On the user side, its "friendly" to set up because it presents the > > user w/ a modem-type setup where you "dial" a vpn box. > > > > > -Original Message- > > > From: [EMAIL PROTECTED] > > > [mailto:[EMAIL PROTECTED] On Behalf Of David > > > Kelly Sent: Friday, May 30, 2003 9:03 AM > > > To: [EMAIL PROTECTED] > > > Subject: VPN from one Win2k host to a FreeBSD network? > > > > > > > > > This has been covered many times before, I'm sure, just I > > > just can't find it now I have need. > > > > > > A consultant with one Win2k system behind a home-office NAT > > > firewall needs to speak Microsoft protocols to an NT4 server > > > inside my FreeBSD NAT firewall. Also connect to the Oracle > > > database. > > > > > > I currently have an IPsec VPN to yet another site with an > > > identical FreeBSD firewall as I have here. Microsoft > > > protocols flow over that link as well. > > > > > > The fact her remote Win2k system is already behind NAT > > > suggests to me using Win2k built-in IPsec isn't going to work > > > with racoon? > > > > > > She can ssh to my FreeBSD system. I have not disabled sshd > > > port forwarding. An attractive low threshold of pain might be > > > to use PuTTY on Win2k and port forward to here. Research > > > suggests she would have to disable filesharing, or possibly > > > remove that module, in order to free ports 137-139 so this > > > would work. Might work but isn't "low threshold of pain." > > > > > > Simple ssh port forwarding should work fine for Oracle. > > > > > > Next thought would be to tunnel PPP thru SSH. Have found > > > plenty of examples of how to do this Unix to Unix but not > > > from inferior OS's. > > > > > > Yet another thought was to use PPPoE. Win2k should have a > > > PPPoE client. Is there a tool on FreeBSD to receive such > > > connections? Would it appear on the Win2k system as another > > > network interface or would it be her sole interface while it > > > is up? Encryption for PPPoE? > > > > > > -- > > > David Kelly N4HHE, [EMAIL PROTECTED] > > > === > > >== The human mind ordinarily operates at only ten percent of its > > > capacity -- the rest is overhead for the operating system. > > > ___ > > > [EMAIL PROTECTED] mailing list > > > http://lists.freebsd.org/mailman/listinfo/freebsd-> questions > > > > > > To unsubscribe, send any mail to > > > "[EMAIL PROTECTED]" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: VPN from one Win2k host to a FreeBSD network?
Thanks! I knew there had to be something out there but in the wealth of ports, I couldn't find it. On Monday 09 June 2003 08:20 pm, Brent Wiese wrote: > Use MPD (its in the ports) for PPTP support, which is built into w2k. > On the user side, its "friendly" to set up because it presents the > user w/ a modem-type setup where you "dial" a vpn box. > > > -Original Message- > > From: [EMAIL PROTECTED] > > [mailto:[EMAIL PROTECTED] On Behalf Of David > > Kelly Sent: Friday, May 30, 2003 9:03 AM > > To: [EMAIL PROTECTED] > > Subject: VPN from one Win2k host to a FreeBSD network? > > > > > > This has been covered many times before, I'm sure, just I > > just can't find it now I have need. > > > > A consultant with one Win2k system behind a home-office NAT > > firewall needs to speak Microsoft protocols to an NT4 server > > inside my FreeBSD NAT firewall. Also connect to the Oracle > > database. > > > > I currently have an IPsec VPN to yet another site with an > > identical FreeBSD firewall as I have here. Microsoft > > protocols flow over that link as well. > > > > The fact her remote Win2k system is already behind NAT > > suggests to me using Win2k built-in IPsec isn't going to work > > with racoon? > > > > She can ssh to my FreeBSD system. I have not disabled sshd > > port forwarding. An attractive low threshold of pain might be > > to use PuTTY on Win2k and port forward to here. Research > > suggests she would have to disable filesharing, or possibly > > remove that module, in order to free ports 137-139 so this > > would work. Might work but isn't "low threshold of pain." > > > > Simple ssh port forwarding should work fine for Oracle. > > > > Next thought would be to tunnel PPP thru SSH. Have found > > plenty of examples of how to do this Unix to Unix but not > > from inferior OS's. > > > > Yet another thought was to use PPPoE. Win2k should have a > > PPPoE client. Is there a tool on FreeBSD to receive such > > connections? Would it appear on the Win2k system as another > > network interface or would it be her sole interface while it > > is up? Encryption for PPPoE? > > > > -- > > David Kelly N4HHE, [EMAIL PROTECTED] > > === > >== The human mind ordinarily operates at only ten percent of its > > capacity -- the rest is overhead for the operating system. > > ___ > > [EMAIL PROTECTED] mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-> questions > > > > To unsubscribe, send any mail to > > "[EMAIL PROTECTED]" -- David Kelly N4HHE, [EMAIL PROTECTED] = The human mind ordinarily operates at only ten percent of its capacity -- the rest is overhead for the operating system. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: VPN from one Win2k host to a FreeBSD network?
Use MPD (its in the ports) for PPTP support, which is built into w2k. On the user side, its "friendly" to set up because it presents the user w/ a modem-type setup where you "dial" a vpn box. > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of David Kelly > Sent: Friday, May 30, 2003 9:03 AM > To: [EMAIL PROTECTED] > Subject: VPN from one Win2k host to a FreeBSD network? > > > This has been covered many times before, I'm sure, just I > just can't find it now I have need. > > A consultant with one Win2k system behind a home-office NAT > firewall needs to speak Microsoft protocols to an NT4 server > inside my FreeBSD NAT firewall. Also connect to the Oracle database. > > I currently have an IPsec VPN to yet another site with an > identical FreeBSD firewall as I have here. Microsoft > protocols flow over that link as well. > > The fact her remote Win2k system is already behind NAT > suggests to me using Win2k built-in IPsec isn't going to work > with racoon? > > She can ssh to my FreeBSD system. I have not disabled sshd > port forwarding. An attractive low threshold of pain might be > to use PuTTY on Win2k and port forward to here. Research > suggests she would have to disable filesharing, or possibly > remove that module, in order to free ports 137-139 so this > would work. Might work but isn't "low threshold of pain." > > Simple ssh port forwarding should work fine for Oracle. > > Next thought would be to tunnel PPP thru SSH. Have found > plenty of examples of how to do this Unix to Unix but not > from inferior OS's. > > Yet another thought was to use PPPoE. Win2k should have a > PPPoE client. Is there a tool on FreeBSD to receive such > connections? Would it appear on the Win2k system as another > network interface or would it be her sole interface while it > is up? Encryption for PPPoE? > > -- > David Kelly N4HHE, [EMAIL PROTECTED] > = > The human mind ordinarily operates at only ten percent of its > capacity -- the rest is overhead for the operating system. > ___ > [EMAIL PROTECTED] mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-> questions > > To unsubscribe, send any mail to > "[EMAIL PROTECTED]" > > ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
