Opinion: Best VPN to use with Fedora/Windows

Kevin Fries Kevin at hcico.com
Mon Jan 10 19:01:32 UTC 2005 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Leonard Isham wrote:
| On Sun, 9 Jan 2005 21:17:55 -0600 (CST), Ed K. <ed at hp.uab.edu> wrote:
|
|>Kevin,
|>
|>I've had the most success with openvpn.sf.net running is bridge mode. The
|>road warriors are a true member of the network, listening to all that
|>windows broadcasts that get sent around. Its easy to install (well
|>compared to other vpn) and does not require a kernel rebuild.
|
|
| I personally avoid bridginh to cut down on the noise over the limited
| internet connections and cut sown on the overhead for each packet.
|
| A little more work with the configuration, but IMHO worth the effort.
|

OK, maybe I am simplifying things a bit more than I should be, so let me
ask:

My conceptual understanding of VPN was that computerA needs access to
NetworkB as if it were located on the physical network even though it is
somewhere else.  ComputerA contacts NetworkB which assigns ServerC to
ask as a proxy.  All traffic destined for NetworkB from ComputerA is
Sent from A->C, ServerC retransmits the request, receives the answer,
then relays it back C->A.  This allows A to appear to be on the network.
~ If ServerC was to manage up to 10 VPN connections, it would need 10 or
11 (if it also had other duties as itself) IP addresses with each remote
client having a unique IP.

Now I can see how that could appear as a goofy type of router or more
specifically a bridge.  Its actually more of a proxy, but at a basic
level all proxies are actually routers.  And a bridge is simply a router
where the network address is the same on both sides.

When they were talk about bridging, I assumed that they were talking
about the proxy.  So when you talk about how you avoid bridging, how is
my understanding of VPN's shortsighted?  What other options are there?

Thanks, and sorry if this question sounds stupid.

- --
Kevin Fries
Network Administrator
Hydrologic Consultants, Inc of Colorado
(303) 969-8033    FAX: (303) 969-8357
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFB4tEMiFq1Eo16+CgRAj/IAKC30tAuNMj+Bvbnx7Rod0jlFr0SDACfZt2D
vCFBpZrI5P5gaUk6edQK1Hg=
=P1lQ
-----END PGP SIGNATURE-----

More information about the users mailing list