On 2022-11-02, Stuart Henderson wrote:
> If anyone's got any good suggestions on how to do VPNs with 2FA
> on an OpenBSD gateway for non-technical users to access (iOS, Android,
> Windows clients) I'd love to hear them.
>
> I could bodge something together with openvpn and TOTP but it doesn't
>
If anyone's got any good suggestions on how to do VPNs with 2FA
on an OpenBSD gateway for non-technical users to access (iOS, Android,
Windows clients) I'd love to hear them.
I could bodge something together with openvpn and TOTP but it doesn't
exactly spark joy.
Ideally the VPN server would
On 02 Nov 02:05, Stuart Henderson wrote:
> If anyone's got any good suggestions on how to do VPNs with 2FA
> on an OpenBSD gateway for non-technical users to access (iOS, Android,
> Windows clients) I'd love to hear them.
>
> I could bodge something together with openvpn and TOTP but it doesn't
>
Perhaps have authpf add clients to a PF table which allows them to vpn in?
The ssh part could have all kinds of S/Key and certificate additions if need be.
Or have people wireguard into the bastion host first, then use authpf
to be let further into the network, since wg is far more silent when
it
On Wed, Nov 02, 2022 at 02:05:48AM -, Stuart Henderson wrote:
> If anyone's got any good suggestions on how to do VPNs with 2FA
> on an OpenBSD gateway for non-technical users to access (iOS, Android,
> Windows clients) I'd love to hear them.
>
> I could bodge something together with openvpn
Hi Stuart,
some of the commercial systems we have used use Radius as the
Authentication Mechanisim...
One could do a rudimentary OTP password system using Radius ...
some OTP systems allow for Caching a series of One Time passowrds circa
100 passwords...
so it could be fesible to have 100
If anyone's got any good suggestions on how to do VPNs with 2FA
on an OpenBSD gateway for non-technical users to access (iOS, Android,
Windows clients) I'd love to hear them.
I could bodge something together with openvpn and TOTP but it doesn't
exactly spark joy.
7 matches
Mail list logo