[NTLUG:Discuss] linux vpn question

[Michael Barnes]

Monty Shinn told me on 2/8/2007 20:18:
> Greetings.
> 
> I am needing to link 2 offices together with a vpn solution.  I would prefer to use IPCOP, but I am not sure how to implement what I need, or if it is robust enough.
> 
> Unfortuantely, I have never implemented a vpn before, and all the information I have found on the web has not gone deep enough, or detailed enough to help.
> 
> Can anyone guide me to a good howto or other explanation on setting up a vpn, beyond what the ipcop and similar websites have to offer?
> 
> Basically, I need to know how to set up the routing on both the "left" and "right" side of the vpn, and if I need any Ipsec software installed on the client computers.  I am trying to set up a net-to-net configuration.
> 
> For instance, the local oracle server sits at ip address >>x.x.x.3<<.  The local (green) ipcop ip address is >>x.x.x.4<<.  On the remote side, the ipcop local (green) ip address will be >>y.y.y.5<<.  I can't find any information on how to set up a route where a remote client computer can point to >>y.y.y.5<< and all ports be seamlessly routed directly to >>x.x.x.3<< inside an encrypted vpn tunnel.  It doesn't look like ipcop's port forwarding applies to vpns.
> 
> I only want the traffic associated with the oracle database ) and samba mount to be sent through the vpn tunnel.
> 
> Please forgive the obvious newbie nature of my questions and examples.
> 
> Many thanks in advance,
> 
> Monty
> 

Personally, I find it better to deal with these applications with an 
appliance.  I set up a vpn a couple years ago that had 10 offices in 
three states all tied to HQ via vpn.  I used Netgear FVS-318s.  I got 
them on eBay for under $50 each.  Easy to set up and use.  Small, little 
power consumption or heat generation. No moving parts.  It has a web 
interface and you can ssh into it for administration.  Saves a ton of 
headaches.

Michael