[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: IP Tunneling to a firewalled host
On Mon, 22 Jun 1998, Miki Shapiro wrote:
> Well after a bit of snooping around, I understand that while
> bi-directional communication with a host outside my firewall is
> obviously possible as long as the machine inside the firewall is the
> one to open up the session, I cannot use the existing IP TUNNELING code
> to use such a session (opened from the inside) as an IP tunnel leading
> in.
I think you are confusing IP tunnelling with masquarading and VPN. I
missed the beginning of thwe thread, what are you trying to do again?
> to my question:
> A) doesnt ANYTHING in existance that runs on linux allow me to do this?
if I understood you correctly you are saying you want a VPN between two
remote firewalls' protected nets. IP tunneling isn't secure, and can be
snooped, and the few people who attempted ppp over ssh immediatly saw that
it's bound to fail (TCP retransmits on the SSH session level will
aggregate on the PPP link's own sessions, it's impossible)
the right way to do that is with secIP (another protocol riding over IP
like any other UDP, TCP, ICMP or other packet) but that has yet to be
implemented in Linux (it IS used by VPN hardware solutions, and maybe also
checkpoint), so therefore I sugest you dig here:
http://sites.inka.de/sites/bigred/devel/cipe.html
CIPE is written by Olaf Titz, an active guy on linux-security and BUGTRAQ
mailing lists.
> <naive-optimistic-I-wanna-be-a-programmer mode on>
> A - Is that stuff with which the Linux modules are written c or c++?
AFAIK (and I'm no programmer either) it's all C and assembly.
> B - I have some minimal programming experience.
> I can pick up C/C++/whatever basics in an online tutorial.
> Can someone reccomend a good book for Linux-Based (Or UNIX based if
don't spend a dime, it's all online...
http://www.developer.com/reference/r_library.html
--
Ira Abramov <ira(a)scso.com> whois: IA58 (a linux enthusiast)
She sells cshs by the cshore. - Rob Malda