Hi
You can try ssh port forwarding(windows clients/linux), or ppp over ssh(only works in linux/linux env).
It's simple and easy to do for encript especific aplications.
The mayor problem happends when your aplications use dinamic ports(in ssh port forwarding).
David
-----Mensaje original-----
De: Small, Jim [mailto:jim.small@xxxxxxx]
Enviado el: miércoles, 02 de junio de 2004 20:10
Para: netfilter@xxxxxxxxxxxxxxxxxxx
Asunto: Linux/Windows pure SSL "VPN" Solution
I have a situation (common) where I need access to my corporate network, but
the vendor will only allow traffic over ports 80 and 443. The vendor would
like me to do an SSL VPN as they do not want to open other ports (read--no
IPSec). I would like to do a Linux proof of concept solution using iptables
and some sort of Open Source SSL VPN (Linux server sitting on the Internet
or in one of our DMZs).
This looks promising: http://www.hsc.fr/ressources/outils/ssltunnel/
It's just what I'm looking for but it doesn't support Windows clients.
I've looked at OpenVPN, CIPE, and vTun, but none of them appear to work only
over port 443. OpenVPN works over 443, but also requires UDP/5000 which is
not possible.
Does anyone know of a pure (TCP/443 only) SSL Open Source solution?
Thanks,
<> Jim
PS I realize this is not a pure iptables question, so I'm prepared for
flames... ;-)