Defend your network and privacy : VPN gateway with OpenBSD

Hello,

An article I just published :
http://networkfilter.blogspot.com/2014/05/defend-your-network-and-privacy-vpn.html

I don't know if it's better to post it here, or in the UNIX forum ?

Regards,
Guillaume.

 

Very cool Thanks

This could also be a VM, by the way, similar to the pfSense VPN-client VMs that I go on about.

As I understand pfSense, restricting an "allow from LAN" rule to a VPN gateway implements policy-based routing. Is that correct? I don't know the guts of pf well enough to do a rule-by-rule comparison with the pfSense setup that I'm using That's why I'm using pfSense. But I'd be happy to dump the rules if you were willing to look.

 

Thanks for your comments

Sadly I never tried pfSense, so I cannot really tell you how they do their filtering. Also, it's better to stay with something you understand and you are confortable with,
rather than using someone else rules which may not fit to your network. Also as pfSense is based on FreeBSD, pf syntax may be different than OpenBSD.
Anyway I'm pretty sure pfSense is doing it right, there is no need to worry about it

Regards,
Guillaume.

 

Congrats ! et merci !

 

You are welcome, always glad to help