[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Web openvpn.net

Re: [Openvpn-users] Wireless security and OpenVPN

  • Subject: Re: [Openvpn-users] Wireless security and OpenVPN
  • From: Jean-Pierre Schwickerath <lists@xxxxxxxxxxxx>
  • Date: Thu, 7 Oct 2004 18:30:07 +0200

> Surely somebody has a more elegant way to protect wireless hosts from
> each other.  Any suggestions?

Well I'd suggest firewalling. 
The client host connected through the AP to the OpenVPN server does not
need to accept ANY connections on it's not encrypted interface, except
for the packets coming from the OpenVPN server (and maybe DNS, if you
use a hostname and not an IP address).
So you could use something like zone alarm and block any outgoing
connections that are not for the OpenVPN host on port 5000 (TCP/UDP
whatever you use) and block any incomming connections that are not
comming from the OpenVPN host (and not established (if using TCP)).

Powered by Linux From Scratch - http://schwicky.net/
PGP Key ID: 0xEE6F49B4 - AIM/Jabber: Schwicky - ICQ: 4690141

Nothing is impossible... Everything is relative!

Openvpn-users mailing list