|
|
Can you get a second IP address from your Internet provider that would
allow you to keep the two ports separate?
On Thu, 2006-11-30 at 16:48 -0800, Ed Wallig wrote:
>
> Thanks for your reply..
>
> My issue is that the user is at a remote site w/ a restrictive
> firewall and my firewall (hardware appliance in front of the VPN
> server) already has port 443 forwarded to a reverse proxy so I can't
> tell the firewall to route port 443 traffic to the VPN server as its
> already going to the rev prox.
>
>
> ----- Original Message ----
> From: Emre Erenoglu <erenoglu@xxxxxxxxx>
> To: Ed Wallig <ilinktech@xxxxxxxxx>
> Sent: Thursday, November 30, 2006 5:22:01 AM
> Subject: Re: [Openvpn-users] TCP-based connection through reverse
> proxy?
>
> Well I couldn't really understand your problem, but I'm using openvpn
> to connect to an OpenVPN Server running on port 443 TCP.
>
> The firewall at my workplace is just like the one you mentioned,
> nothing goes out except ports 80 and 443, and even those ones can only
> go out through a Proxy Server.
>
> My config runs good, I suggest you run another instance of OpenVPN
> server on another IP address on port 443 TCP.
>
> Note: I remember something that the new version of OpenVPN allowed
> sharing of port 443 with another application, but I'm not sure.
>
> Best regards,
>
> Emre
>
> On 11/30/06, Ed Wallig <ilinktech@xxxxxxxxx> wrote:
> >
> > Hi,
> >
> > This may not actually be an OpenVPN question but I've had this on my
> mind
> > for a while so I figured that I would ask. For the most part, I use
> UDP
> > tunnels for my road warriors and have few issues with this config.
> However,
> > I have had several instances where a user is behind a corporate
> firewall
> > that is blocking outbound UDP traffic, resulting in a connection
> failure for
> > the client. I also had problems with a UDP tunnel over a satellite
> > connection.
> >
> > To combat this, I have each client set up with an alternative config
> file
> > (using OpenVPN-GUI) that enables the user to attempt a TCP-based
> connection
> > if the UDP one fails. However, I can't use port 443 in this config
> due to
> > the way my firewall forwards inbound traffic - port 443 is already
> forwarded
> > to my reverse proxy for web services. Recently, one of my guys
> couldn't
> > connect w/ either config because of a customer's extreme firewall
> config;
> > only port 80 / 443 and a couple of others were allowed outbound.
> >
> > My question - does anyone have any experience with routing VPN
> traffic over
> > TCP port 443 through a reverse proxy? It could be ISA, Apache,
> etc...
> >
> >
> > Thanks...
> > ________________________________
> > Everyone is raving about the all-new Yahoo! Mail beta.
> >
> -------------------------------------------------------------------------
> > Take Surveys. Earn Cash. Influence the Future of IT
> > Join SourceForge.net's Techsay panel and you'll get the chance to
> share your
> > opinions on IT & business topics through brief surveys - and earn
> cash
> >
> http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
> >
> > _______________________________________________
> > Openvpn-users mailing list
> > Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
> > https://lists.sourceforge.net/lists/listinfo/openvpn-users
> >
> >
> >
>
>
> --
> Emre Erenoglu
> erenoglu@xxxxxxxxx
> emre.erenoglu@xxxxxxxxxxxx
>
>
>
>
> ______________________________________________________________________
> Everyone is raving about the all-new Yahoo! Mail beta.
>
>
>
>
> ______________________________________________________________________
> Cheap Talk? Check out Yahoo! Messenger's low PC-to-Phone call rates.
> -------------------------------------------------------------------------
> Take Surveys. Earn Cash. Influence the Future of IT
> Join SourceForge.net's Techsay panel and you'll get the chance to share your
> opinions on IT & business topics through brief surveys - and earn cash
> http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
> _______________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users
--
This e-mail and attachments, if any, may contain confidential and/or
proprietary information. Please be advised that the unauthorized use
or disclosure of the information is strictly prohibited. The information
herein is intended only for use by the intended recipient(s) named
above. If you have received this transmission in error, please notify
the sender immediately and permanently delete the e-mail and any
copies, printouts or attachments thereof.
Attachment:
signature.asc
Description: This is a digitally signed message part
-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users
Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-12/msg00003.html on line 308
Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-12/msg00003.html on line 308
|