Best VPN server to use on Fedora
Michael H. Warfield
mhw at wittsend.com
Tue Oct 25 22:49:50 UTC 2005
On Tue, 2005-10-25 at 15:03 -0400, Neal Becker wrote:
> Michael H. Warfield wrote:
>
>
> > For larger VPNs with a lot of systems, certificate based OpenSWAN can
> > be a lot easier to set up than OpenVPN, particularly if you have to set
> > up OpenVPN in peer-to-peer mode where each connection requires
> > configuring unique UDP endpoint ports. OpenVPN server mode can help
> > with it's address pool technique and their coming out with some newer
> > tricks for handing out and routing addresses in server mode that hasn't
> > quite make it to release yet. But that doesn't help out much once you
> > get away from a star topology. OpenVPN needs to impliment a
> > server-to-server mode before they can really address that.
> Have you looked at openvpn>2? I believe these comments are obsolete.
Read the whole message. "Server mode" only applies to OpenVPN 2. I'm
even running the "toc" (topology) beta's. Yes, I'm aware of them and no
the comments are not obsolete. That is why they are qualified as
applying to "peer to peer mode". And server mode does not help you in
fully meshed mode (yet).
Mike
--
Michael H. Warfield | (770) 985-6132 | mhw at WittsEnd.com
/\/\|=mhw=|\/\/ | (678) 463-0932 | http://www.wittsend.com/mhw/
NIC whois: MHW9 | An optimist believes we live in the best of all
PGP Key: 0xDF1DD471 | possible worlds. A pessimist is sure of it!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 307 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20051025/2ed8165f/attachment-0001.sig>
More information about the fedora-list
mailing list