Topic: firewall-to-firewall tunnel

[John]

I am needing to set up a VPN, and the client has concerns about meeting the new requirements for IP-Sec / PPTP.   Because he is running NT 4 workstations, he would prefer to have a firewall-to-firewall tunnel.  If I understand correctly, this is how e-smith handles VPN.
Is this correct?
Thanks-
John

[Justin]

John wrote:
>
> I am needing to set up a VPN, and the client has concerns
> about meeting the new requirements for IP-Sec / PPTP.

These are mutually exclusive protocols.
 
> Because he is running NT 4 workstations, he would prefer to
> have a firewall-to-firewall tunnel.  If I understand
> correctly, this is how e-smith handles VPN.

Not natively. There have been some developer contributions using FreeSwan (IPSEC) for site to site projects. Currently e-smith comes "out of the box" with client to server VPN using the (PPTP) protocol.

Justin.

[John]

Does e-smith support a 3-DES IP-Sec tunnel?

[Justin]

John wrote:
>
> Does e-smith support a 3-DES IP-Sec tunnel?

Not yet, it is something I have wanted to do for a while but it looks like Jeb has something working so I have been waiting on him.

Personally I hope they skip 3DES and go straight to AES. The package will most likely support any symmetrical encryption protocol you want to use.

Justin

[John]

is there and e.t.a. on the release of that package?

[Justin]

John wrote:
>
> is there and e.t.a. on the release of that package?

None that I am aware of. They are quite busy with some other features and I don't know where this would fall on the priority list.

If your looking for something immediately I would take a look at Jeb Campbell's contributed FreeSwan rpm. (keep in mind it is unsupported)

Justin