From mboxrd@z Thu Jan 1 00:00:00 1970 From: Grant Taylor Date: Tue, 21 Nov 2006 06:15:05 +0000 Subject: Re: [LARTC] VPN Solution Message-Id: <45629969.9050208@riverviewtech.net> List-Id: MIME-Version: 1.0 Content-Type: text/plain; charset="windows-1252" Content-Transfer-Encoding: quoted-printable To: lartc@vger.kernel.org On 11/21/06 00:20, Rangi Biddle wrote: > What I want to do is have a VPN (PPTP/IPSEC/CIPE/etc) server, but it=20 > must support more than one simultaneous connection. >=20 > I currently have a PPTP VPN server setup that has port 1723 and protocol = > 47 DNAT=92d through to the internal IP address of the VPN server and I=20 > have not been able to have more than one connection at a time. I am=20 > considering setting up the VPN server as a gateway (for lack of a better = > word) and instead of DNATing the connections through to the internal IP=20 > I would setup a DMZ with the VPN server as the only host. My only=20 > concern in doing so is that if it does not work what other options do I=20 > have besides getting a different connection type such as fibre? I=92m=20 > trying to do this as cheaply as possible. Can / will you provide some more information such as what type of client=20 will be connecting to the VPN concentrator? I believe the 1 concurrent connection you are referring to is a limitation = of IPTables match extension for PPTP tunnels. If you put the VPN=20 Concentrator such that it is directly routable you should have better luck. Beyond PPTP, you can look in to IPSec or SSLTunnel, or any number of other = products. However to be able to determine which of the products is best=20 suited to your situation, we need to know more about your situation. Grant. . . . _______________________________________________ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc