Information and/or Suggestiong needed
Eugen Leitl
eugen at leitl.org
Thu Apr 20 08:55:04 UTC 2006
On Thu, Apr 20, 2006 at 03:38:22PM +0700, Fajar Priyanto wrote:
> > Anyway, so the setup as it stands is, T1 here and T1 there. Each
> > with their own subnet (completely different range as well.) Both
> > locations have a Fedora machine with iptables acting as a firewall for
> > the internal networks. In order for us to transfer data from one
If that machine is not a dedicated firewall, I strongly suggest
to use it a dedicated firewall. I would also suggest to not use
Fedora (fine desktop system that it is) but to use e.g. a m0n0wall
or pfsense. Notice that you will peak at about 50 MBit/s with a
soekris or a wrap hardware, so you might just recycle your existing
dedicated firewall PC by installing m0n0wall or pfsense on an USB
stick and boot from there.
m0n0walll to m0n0wall IPsec tunnels are ridiculously simple to
set up.
> > location to the other, the information is essentially being dumped onto
> > the big ole Internet and sent out (or received at the other end.) What
> > they want to know now is if there's anyway to link the locations
> > together and possibly speed up the transfer of data, just between the
> > locations (while still retaining the setup as it stands right now,
> > without incurring the cost of yet another link, just between the
> > buildings.)
> >
> > Is this even a feasible thing to do, at this point in the game? And
> > if so, I'm open for suggestions.
>
> If the two link has Public IP, you can create a VPN server, thus allowing a
> secure tunnel through the internet for those locations.
Yes, OpenVPN is your friend. Much easier to get to work than an IPsec
tunnel (unless it's m0n02m0n0).
> However I haven't tried it. Pls research more for VPN.
--
Eugen* Leitl <a href="http://leitl.org">leitl</a> http://leitl.org
______________________________________________________________
ICBM: 48.07100, 11.36820 http://www.ativel.com
8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 191 bytes
Desc: Digital signature
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20060420/2d45d374/attachment-0001.sig>
More information about the fedora-list
mailing list