|
|
Sebastien Venot [2004-10-05 09:14 CEST]:
> hello,
>
> i have a new question.
> We can access the internal network via a WIFI network and my job is
> actually to secure this connection.
>
> the openVPN server is in the internal network(so he has an Ip from this
> internal network).
> The remote client is a wireless laptop with an IP of the wireless LAN.
> Is it possible to setup the VPN tunnel from this client to the server even
> if they don't belongs to the same IP network?
If your accesspoint has no openvpn, you should do portforwarding for the
upd ports of the openvpn tunnel to the internal openvpn server.
Some accesspoint namely those like linksys wrt54gs are extendable with
configureable firmware images, which contain openvpn.
OpenWRT project: http://openwrt.ksilebo.net/
Which accesspoint are suported?
http://openwrt.org/OpenWrtFaq#head-d02d34e097988371abc90c815790b241f86e57d0
A company which contribute the lasted stable version for free:
ftp://ftp.sveasoft.com/pub
>
> Are they other critical issues when setting up a VPN over a WIFI LAN?
You should install a privat firewall on the wifi computer, to make sure
that nobody will access over the wifi channel trough your secure openvpn
tunnel to your internal network. The firewall setup just only allow udp
from/to accesspoint and the tunneltraffic to/from internal network.
Everything else should blocked.
Frank.
--
Frank Matthieß
"I'm perfectly willing to admit that Unix not only lets you shoot yourself in
the foot, it gives you an assortment of guns already loaded and pointed in the
proper direction."
-- Michael Wojcik <michael.wojcik@xxxxxxxxxx> in alt.folklore.computer
Attachment:
signature.asc
Description: Digital signature
|