Re: Can't find suitable firewall/VPN software for dynamic IPs

From: Leythos (void_at_nowhere.com)
Date: 02/08/04 

Date: Sun, 08 Feb 2004 22:09:54 GMT

In article <fe9d20l0ddemoq23mj3kuaa414qg8bm4b3@4ax.com>, kenw@kmsi.net
says...
> Is there _any_ open source firewall solution that provides VPN endpoints
> with dynamic IPs, and supports Microsoft (or free) VPN clients for Windows
> XP?
>
> I've been asked to build a software firewall for a small business network.
> I can't seem find anything Linux (or equiv.) based, that meets my needs,
> which are:
>
> - it should provide NAT service for outbound connections, although I do NOT
> need it to provide DHCP or DNS services. So far no problem. Smoothwall,
> e.g., handles this nicely.
>
> - must act as a VPN endpoint (i.e., NOT passthrough) for the local network,
> providing remote access for remote Windows XP Pro workstations using
> Microsoft VPN clients.
>
> - must support VPN with dynamic IP on both ends. Most Linux firewalls only
> support IPsec, and hence static IPs; I think we're down to PPTP and L2TP.
> This blows it for ITShield, too; for some crazy reason, even though it
> supports PPTP, it requires a static IP. Those things ain't cheap.
>
> - do NOT want to use pinholes or VPN pass-through; i.e., no direct access
> to internal systems by any clients not authenticated to the firewall. I
> can buy a cheap hardware firewall if I'm just going to poke holes in it.
>
> - must be quick and easy to set up. The client won't pay for a day's worth
> of my time to figure out unmaintainable patches, scripts, etc.

A simple Linksys VPN router will do all of this an more. The VPN routers
allow IPSec over dynamic IP's using the user name and key method. 

-- 
--
spamfree999@rrohio.com
(Remove 999 to reply to me)

Relevant Pages

  • Re: [fw-wiz] Recommendation needed for a firewall appliance
    ... >>I was unsuccessful in getting an IPSec VPN going with a Win2K ... >There are several firewall specific linux distros, Astaro, Coyote ... >There are some small firewall units, and there are small Managed Security ... >> for Windows, OSX and Linux. ...
    (Firewall-Wizards)
  • Re: windows firewall
    ... Can't ping other computers after installing SP2 ... Open Windows Firewall. ... Networking, Internet, Routing, VPN, Anti-Virus, Tips & Troubleshooting on ...
    (microsoft.public.windowsxp.network_web)
  • Re: Windows XP to Windows XP VPNs?
    ... So in the case of Windows XP to Windows XP, ... Internet betweeen them? ... It will not block file sharing across the VPN. ... The firewall only sees the "wrapper", ...
    (microsoft.public.win2000.ras_routing)
  • Cant find suitable firewall/VPN software for dynamic IPs
    ... and supports Microsoft VPN clients for Windows ... I've been asked to build a software firewall for a small business network. ... And if anybody's got a better solution for dynamic IPs, ...
    (comp.os.linux.networking)
  • Cant find suitable firewall/VPN software for dynamic IPs
    ... and supports Microsoft VPN clients for Windows ... I've been asked to build a software firewall for a small business network. ... And if anybody's got a better solution for dynamic IPs, ...
    (comp.security.firewalls)