JR_Ewing

Forum Replies Created

Viewing 4 posts - 1 through 4 (of 4 total)
  • Author
    Posts
  • in reply to: More OpenVPN Host-to-LAN VPNs, disable redirect gateway #46923

    JR_Ewing
    Member

    Solution: I will make a virtual router ( ESXi server ) for VPN and I will have VPN server there, and I will install Zeroshell to router too.
    Keep luck with your project

    JR

    in reply to: Zeroshell and ESXi #46911

    JR_Ewing
    Member

    @jeremy.haynes wrote:

    Hi,

    I am curious if anyone has zeroshell installed under ESXi with 1 Physical NIC to their ISP modem and 1 Physical NIC to their internal network?

    When I set up the VMKernel for the External NIC and say that it’s DHCP it nevers picks up an IP address, but the default route is greyed out and pointing to the gateway of the Internal NIC.

    Has anyone overcome that?

    thanks

    I have it in ESXi as firewall ( plan to temporary replace my main router to reinstall it ) and it works. But I dont have one NIC to internal network and one to external. I use switch for this purpos and both NICs are connected to switch witch VLANs. Internet is delivered to ESX thru tagged VLAN.

    in reply to: More OpenVPN Host-to-LAN VPNs, disable redirect gateway #46922

    JR_Ewing
    Member

    @fulvio wrote:

    You can simulate a second host-to-LAN OpenVPN by activating a LAN-to-LAN one. In this case you could use only X.509 authentication. Kerberos 5 and RADIUS authentication are not possible for L2L VPN. Staring with the release 1.0.beta11 you could use a Preshared Key Authentication.

    If you don’t want that the OpenVPN parameter redirect-gateway is pushed to the clients, use the button [Net] (release 1.0.beta10+) to specify the networks you want to reach across the VPN.

    Regard
    Fulvio

    Thank you for your answer. Looks like ZeroShell is not ready to replace my main router, so I must stay with debian there. Never mind, still zeroshell is great project for ordinary use ( Iam a little bit fool with my network infrastructure ) and I am going to use it at intranet wired/wireless routers and PtP links ).

    in reply to: NAS (Network-Attached Storage) #46865

    JR_Ewing
    Member

    I think this is not good idea. As computer security specialist I recommend to NOT HAVE data on security appliance ( in this case zeroshell ). Thats because if someone compromise your zeroshell, he has free access to your data as well. Right solution is to have data on separate computer and for it, there are good free nas solutions ( openfiler, freenas etc. ).

    @islamail wrote:

    Zeroshell would be perfect for me if offering a NAS (Network-Attached Storage) function !!!

    Any Easy-to-Use Solution !?

    I’ll appreciate your answers

Viewing 4 posts - 1 through 4 (of 4 total)