OpenVpn aplh h dyskolh erwtish..?

[George Paschos]

Vasika gia to proto pou anafereis i pio eykoli lisi (pou doulevei kiolas)
einai na paikseis me pptp mias kai to client einai builtin sta win98/2k/xp,
to idio to DUN kai kaneis ola ayta pou zitas.

To mono pou thelei ligo ftiaksimo, einai na kaneis to linux sou na milaei
MPPE (ms point-to-point encryption), pou milane ta windows gia na
termatizeis to vpn. 

Ayta pou tha xreiasteis sto linux sou einai: 
1. na valeis ton pptpd 
2. na valeis enan pppd patcharismeno gia mppe (an kai ta pio polla distros
ton exoun etsi idi)
3. na patchareis to kernoula gia na apoktiseis to mppe module.

An googliseis ligo me "mppe linux" tha vreis oti xreiazese.

To doulevo kata koron se 2.4.22-24 & 2.6.0-1

An exeis debian MIN xrisimopoiiseis to patch pou vriskeis apo to apt.

Gia to openvpn den exw apopsi, gia to freeswan pistevo oti einai poli
mperdema gia ayto pou thes na kaneis. Genika einai kalitera na skeftese
IPSEC gia net-to-net tunnels.

An se apasxolisei to IPSEC kai net-to-net, imho, kalitera na paikseis me
2.6.x kai me to linux port tou KAME (apo to freebsd).

Tespa, an koliseis kapou me to pptp afou patchareis kernel, ktl. pes na sou
kanw post conf files, ktl. i kai ta iptables rules pou tixon xreiazese.

Telos, an to fw sou den einai stimeno akoma, des to Gibraltar
(www.gibraltar.at) ena fw-router-vpn-ktl. oriented cd based distro (stin
ousia debian) pou exei ta panta etoima (patches, ktl) gia tetoies doulies.
Einai open kai free (ektos an thes kai to web conf interface pou to
agorazeis). Einai ekseretiko kai to xrisimopoio xoris provlima se ISP class
perivalon.


Genika den apantisa akrivos stin erwtisi sou, alla tin doulia pou thes tha
tin kaneis :)

HTH,

Giorgos Paschos
 



> -----Original Message-----
> From: linux-greek-users-bounces at lists.hellug.gr [mailto:linux-greek-users-
> bounces at lists.hellug.gr] On Behalf Of Karoto *Alpha Information*
> Sent: Thursday, February 05, 2004 12:32 AM
> To: linux-greek-users at lists.hellug.gr
> Subject: OpenVpn aplh h dyskolh erwtish..?
> 
> Geia sas paidia mprabw sto support team ths hellug kanei ekpliktikh
> douleia.. euxomai h epomenh infosystem na ginei grigora kai na
> mazeutoune kai alla paidia..anyway..akouste to erwtima mou..
> 
> 8a h8ela ws kiria apopsh na me diafotisete me to 8ema tou VPN , me
> apasxolei kairo , Basika eimai se dilima me to an telika prepei na
> xrisimopoihsw mia olokliromenh lisi opws enan cisco router kai na exw
> ola ta pronomia kai ta kaloupia tou , h an einai na xrisimopoihsw mia
> lish open source..
> 
> Katelija sto simperasma oti yparxoune arketa programmata na asxoli8ei
> kaneis me to VPN dyo omws einai ta kalitera to FreeSwan kai to OpenVPN
> (h oxi?) , kai ta duo exoune kala kai kaka..
> 
> Ua h8ela na mou peite san empiroi xristes ti 8a protimousate kai giati?
> Basika auto pou 8elw na kanw einai se prwth fash , na exw enan Linux
> server kai apo ejw winxp/2000 mhxanaki , kai pisw apo ton linux ena
> intranet 192.168.x.x kai ENAS mono xristis na mpainei apo ejw na
> ftiaxnei ena tunnel kai meta na sikwnei routing sto eswteriko diktyo..
> 
> Se deuterh fash 8a me endiefere kati tetei na ginete me perisotera atoma
> px 10
> To openvpn mou arese apo thn apopsh oti einai eukolo kai de 8elei kapio
> idietero compilation kai den apasxoleis ton kernel , apo thn allh omws
> den douleuei IpSec , h L2TP pou prosferoune etoima ta win/xp/2000 (esto
> me kapoio patch) jerw pws poloi apo esas 8a mou peite oti to ipsec einai
> mia apotixia kai oti exei polla flaws apo security .. de jerw ilikrina
> exw mperdeutei..To freeSwan pantos akoma de mporesa na to sikwsw swsta..
> 
> O xristis pou 8a mpainei apo ejw me endiaferei na pernei eswterikh ip
> tou diktiou , h estw na blepei ta mixanimata me eswterikh ip , etsi wste
> na douleuei Samba , windowsNT terminals , ssh.
> 
> Kai kati akoma pou 8a 8ela na gnorizw , yparxei tropos na doulepsei to
> OpenVPN me username kai passwords? Kai an nai pws?
> 
> Euxaristw poly.
>