[olug] VPN / iptables type question
Phil Brutsche
phil at brutsche.us
Thu Jan 22 18:42:09 UTC 2004
Shaughn wrote:
> Hello. I just got asked a question on a scenario.
>
> Company #1 and Company #2, want to both VPN to Server C.
>
> So, in my mind, with this, #1 and #2 will be on the same network as
> S.C, so they will all beable to see eachother? correct? All machiens
> from #1 can access #2 and S.C.
>
> I would like ot know if it's possible to have #1 and #2 machines
> route the traffic. Like all local traffic to the S.C goes to the S.C,
> but any internet traffic goes through the gateway of their ISP, and
> not the S.C as a VPN would do.
Keep in mind that the term "VPN" is actually very generic, and the
precise details of how the VPN acts with regard to routing encrypted or
unencrypted traffic is implementation specific, and there are frequently
little knobs that can be turned to change those details.
So the answers to your questions are "Yes" and "No". Which question is
answered with "Yes" or "No" depends on *WHAT* you are going to use to
implement the VPN. Are you going to use little firewall boxes, like
Netscreens, SonicWALLs, or PIXes? CIPE? OpenVPN? IPsec? What about
Microsoft PPTP?
The question you need to ask is "Will the VPN implementation I'm going
to use have the behavior I want?"
Am I confusing enough yet? ;)
--
Phil Brutsche
phil at brutsche.us
giving vague answers to concrete questions since 1997
More information about the OLUG
mailing list