[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
forwarded msg. from: Stephane Bortzmeyer <bortzmeyer at nic.fr>
- To: afnog at afnog.org
- Subject: forwarded msg. from: Stephane Bortzmeyer <bortzmeyer at nic.fr>
- From: Charles Musisi <cmusisi at cfi.co.ug>
- Date: Fri, 17 Jan 2003 19:30:08 +0300
- Content-Type: multipart/mixed; x-avg-checked=avg-ok-5B2C342E; boundary="=======353069E2======="
- Delivered-To: afnog-archive at lists.eahd.or.ug
- Delivered-To: afnog-outgoing at afnog.org
- Delivered-To: afnog at afnog.org
- Sender: owner-afnog at afnog.org
Date: Fri, 17 Jan 2003 11:01:44 +0100
From: Stephane Bortzmeyer <bortzmeyer at nic.fr>
To: MOHAMED <mzongo at zcp.bf>
Cc: afnog at afnog.org
Subject: Re: VPN
Message-ID: <20030117100144.GB3068 at nic.fr>
References: <200301161648.04315.mzongo at zcp.bf>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <200301161648.04315.mzongo at zcp.bf>
User-Agent: Mutt/1.3.28i
X-Operating-System: Debian GNU/Linux 3.0
X-Kernel: Linux 2.4.18-686 i686
Organization: NIC France
X-URL:
http://www.nic.fr/
On Thu, Jan 16, 2003 at 04:48:04PM +0000,
MOHAMED <mzongo at zcp.bf> wrote
a message of 28 lines which said:
> I want to make a VPN (Virtual Private Network) beetwen CP1 and CP2
> CP1 and CP2 are linux boxes.
With what protocol? IPsec? OpenVPN? Vtun? GRE?
> I mean that i don't have access to R2 and FIREWALL2
Basically, you have no chance. Every protocol will require to open at
least some ports on the firewall. Ask the firewall administrator. If
he/she does not want, forget it.
There are some tricks to tunnel IP packets in, for instance, HTTP
requests, but I must warn you: this will probably be seen as a serious
policy and security breach and will expose you to be fired,
prosecuted, etc