On 24 Jun 18:00, MJ Ray wrote:
Mark Rogers wrote:
On 24/06/10 15:31, Laurie Brown wrote:
It doesn't support OpenVPN (but apparently will when V2 comes out "some time this year", it uses IPSEC only right now.
Are there any good open-source peer-to-peer VPN solutions? A quick Google got me stuff like Wippien, n2n, p2pvpn, etc, but I have no experience of any of them to know if they're any good.
Laurie Brown wrote about two of the best: OpenVPN and IPSEC (using the native Linux IPsec stack, or the Openswan KLIPS stack?).
Personally I'm currently using tinc, which is simple to setup between linux boxes, not yet had the misfortune of needing to connect via a windows box, though, but I believe that there is a client. It's basically just ssl based, sits out the way, and does nice autoreconnection foo. It binds to a tun/tap interface, which is nice... so I use it in a potentially slightly odd way, I deliberately set the mac address manually on tun/tap interface on the machines, and on the "server" there's an radvd instance bound to that ends tun/tap interface, I then get static ipv6 addresses for anything that connects to the server, and can route to those globally from any other ipv6 enabled place. It might be a bit of an abuse of some v6 space, but it ain't half handy, and does mean that whereever me and my laptop travel, I've generally got ipv6 connectivity.
(Next step - giving the phone an ipv6 address when it's got wireless up automagically, and making it so that I can bring up the ipv6 manually at other times - should just involve installing tinc on the n900 and writting a small app to sit in the status bar for turning on/off the vpn :)
Cheers,