Point-to-Point VPN + Firewall + Router (sorta) - What should I use?
Here's the scenario:
I've got a number of remote sites that use a point-to-point VPN for WAN connectivity back to the data center. These are consistent tunnels with no restrictions provided by Cisco PIX firewalls (well, a newer one is an ASA).
Now I need another point-to-point VPN - but I can't buy anything. So I thought perhaps I could configure a couple FreeBSD boxes to act, well, pretty much in place of what a PIX would do.
I'll need the VPN between the two boxes, and firewall on at least one (one will be Internet-facing, the other I'm going to try putting in the DMZ of an existing PIX - but if that causes a problem with the VPN passthrough then it, too, will be Internet-facing). Internet traffic would also need to be filtered with firewall rules. And the second NIC on the boxes will need to be able to pass traffic to the inside network, of course. There's a router on the inside of both networks.
Alternatively, if I can establish a P2P VPN from a single FreeBSD box directly to an existing PIX 515, that would work too. But is that really as much fun?
So can I do this with existing ports for FreeBSD? If so, what recommendations do you folks have?
|Thread||Thread Starter||Forum||Replies||Last Post|
|Wireless NIC for access point||dewarrn1||FreeBSD General||1||15th September 2009 11:01 PM|
|How do I edit my .profile to permanently have an ftp site to point to||badguy||OpenBSD Packages and Ports||12||19th July 2009 02:05 AM|
|Is there a purpose for using pf if you have a hardware router/firewall?||guitarscn||OpenBSD Security||9||22nd January 2009 11:22 PM|
|OpenBSD Wi-Fi acces point||LordZ||OpenBSD General||4||18th October 2008 10:33 AM|
|Configuring a wireless access point||Serge||FreeBSD General||6||6th June 2008 04:07 PM|