Re: DD-WRT VPN
- From: Jeff Liebermann <jeffl@xxxxxxxxxx>
- Date: Wed, 02 Jul 2008 18:15:45 -0700
On Wed, 2 Jul 2008 15:31:31 -0500, "Adair Winter" <adairw@xxxxxxxxxx>
wrote:
Thanks for the input Jeff as always your helpful.
Thanks.
As I stated befor be do
not need a ton of bandwidth but I also know what it like to run anything on
hardware that is being pushed beyond it's limits.
I forgot that I have a nailed up VPN running between my house and
office with a WRT54G v3 at one end, and a Buffalo WHR-HP-G54 at the
other. I'll run some bechmarks this weekend and see what happens.
Anyone want to suggest some other solutions for the VPN that wont require
stupid expensive hardware and ideally can be placed behind the firewalls
that are in place.. I.E the VPN hardware just creates the tunnel thru the
WAN router. Id be more interested in a solution that would let us reuse
exsisting hardware we might already have
Sure. I've used various Sonicwall products to build multiple
connection VPN's. The messiest was 5 locations in 3 states via DSL
and T1 lines. Speed was limited by the outgoing bandwidth of the DSL
lines, not the processor. Unfortunately, it was an older Sonicwall
10, which is no longer manufactured.
I've also used Netscreen hardware, which is now part of Jupiter
Networks. One huge advantage was that Netscreen simultaneously
supports PPTP (for Windoze client dial-in) and IPSec (for router to
router). Netscreen is basically Linux on the inside.
I've also use FreeSWAN on Red Hat and OpenVPN SSL on Ubuntu between 3
sites. This was a bit of major project and learning curve for me. I
finally had to yell for help and hired a local student to make it all
work. It's been up for about 2 years and I'm still recovering from
some of the odd tweaks the student threw into the servers. The Linux
boxes currently run on 2GBytes Compact Flash drives (no hard disk). A
big advantage is the ability to easily deal with static routes and
complex firewall issues, as there's an Asterisk server running on one
of the servers. The only problem is that the business owner insists
that I document everything in case I should suddenly die or go on
vacation.
One of my friends has a local store and the owners house connected
with a pair of Linksys BEFVP41 v2 routers running IPSec. They work,
but are what I describe as "tempermental". They hang, crash, die, or
reboot, for no obvious reason. I've recommended replacement, but the
owner claims he doesn't use the VPN very much and is willing to
tolerate the instabilities. Not recommended.
I've tried various Netgear routers that terminate VPN's. I never
could get them to work the way I thought they should work, so I gave
up. I suspect it might have been possible if I had bothered to read
the instructions.
--
# Jeff Liebermann 150 Felker St #D Santa Cruz CA 95060
# 831-336-2558 jeffl@xxxxxxxxxxxxxxxxxxxxxx
# http://802.11junk.com jeffl@xxxxxxxxxx
# http://www.LearnByDestroying.com AE6KS
.
- Follow-Ups:
- Re: DD-WRT VPN
- From: Adair Winter
- Re: DD-WRT VPN
- References:
- DD-WRT VPN
- From: Adair Winter
- Re: DD-WRT VPN
- From: Jeff Liebermann
- Re: DD-WRT VPN
- From: Adair Winter
- DD-WRT VPN
- Prev by Date: Re: Any reason to provide 11.b as a fallback?
- Next by Date: Re: DD-WRT VPN
- Previous by thread: Re: DD-WRT VPN
- Next by thread: Re: DD-WRT VPN
- Index(es):
Relevant Pages
|
