Prev: Can't get OO3 to execute on FreeBSD7
Next: FreeBSD on AVR32/NGW100 ... status reports??
From: Clemens Zauner on 21 Aug 2009 18:07
Michael Grimm <trashcan(a)odo.in-berlin.de> wrote:
> But I do have to admit that I'm clueless w.r.t. which VPN (IPSec,
> OpenVPN, ssh tunnel, etc.) would optimally fit my demands mentioned
> above. How to NAT? Which VPN? What else?

Me personally I do like mpd / pptd.

> I'm open to advice and hints, and, thanks in advance.

Bind the jail to a lo1 ... lo[n] interfaces, and make them unreachable
(e.g. by nonexitent routes to them and/or firewall-rulesets). rund the
vpn on the Host, not in the jail. If your VPN does some kind of ppp-stack
you can use the lo[whatever] Interface as local, assigning the remote
dynamic.

HTH
Clemens.
--
/"\ http://czauner.onlineloop.com/
\ / ASCII RIBBON CAMPAIGN
X AGAINST HTML MAIL
/ \ AND POSTINGS
 | 
Pages: 1
Prev: Can't get OO3 to execute on FreeBSD7
Next: FreeBSD on AVR32/NGW100 ... status reports??