[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: design and built a firewall
- To: afnog at afnog.org
- Subject: Re: design and built a firewall
- From: John Tully <tully at mt.lv>
- Date: Wed, 12 Jun 2002 22:56:55 +0300
- Content-Type: text/plain; charset="us-ascii"; format=flowed
- Delivered-To: afnog-archive at lists.eahd.or.ug
- Delivered-To: afnog-outgoing at afnog.org
- Delivered-To: afnog at afnog.org
- Sender: owner-afnog at afnog.org
Hello Didier,
The MikroTik RouterOS can do all of that. You can put RouterOS boxes where
you had the "FreeBSD or Linux box (city 1)". Use 128bit PPTP VPN between
the two and then add Ethernet over IP to bridge the LANs. You can also put
bandwidth shaping on the VPN so that it won't use too much bandwidth.
You can do this with the free "demo" license -- no expiration.
Full instructions can be found in the MikroTik RouterOS docs with a diagram
showing this.
For the PPTP tunnel
http://www.mikrotik.com/Documentation/manual_2.5/Interface/PPTP.html
For the Ethernet over IP tunnel
http://www.mikrotik.com/Documentation/manual_2.5/Interface/EoIP.html
Sincerely,
John Tully
At 08:18 PM 6/12/2002 +0100, you wrote:
>I would like to setup secure transaction between to locations in 2
>ddifferents cities through internet.
>
>The data will take this route:
>1. LAN (city 1)
>2. FreeBSD or Linux box (city 1)
>3. Cisco 3600 c(city 1)
>4. Internet cloud
>5. Cisco 2600 (city 2)
>6. FreeBSD or Linux box (city 2)
>7. LAN (city 2)
>
>Questions:
>
>. Do I have to use special firewall device like Cisco PIX Firewall or I
>can setup afirewall using FreeBSD box?
>. I have control of the 2 routers. What di I have to do in the router
>config?
>. Any suggestion to setup the secure transaction and/or a VPN ??
>
>
>Didier
>
>
>
>-----
>This is the afnog mailing list, managed by Majordomo 1.94.5
>
>To send a message to this list, e-mail afnog at afnog.org
>To send a request to majordomo, e-mail majordomo at afnog.org and put
>your request in the body of the message (i.e use "help" for help)
>
>This list is maintained by owner-afnog at afnog.org
-----
This is the afnog mailing list, managed by Majordomo 1.94.5
To send a message to this list, e-mail afnog at afnog.org
To send a request to majordomo, e-mail majordomo at afnog.org and put
your request in the body of the message (i.e use "help" for help)
This list is maintained by owner-afnog at afnog.org