General Questions

I would love to see openvpn in m0n0
I have some pfsense installs, but for home / small office is pfsense too heavy.

dd-wrt does have openvpn, but no IPSec. But is not as nice as m0n0
That what i love to see.

I would love to see openvpn in m0n0
I have some pfsense installs, but for home / small office is pfsense too heavy.

dd-wrt does have openvpn, but no IPSec. But is not as nice as m0n0
That what i love to see.

I might have missed the discussion about openvpn vs. what m0n0wall uses. Can anyone summarize the differences, advantages, etc.?

Just fyi to those following this thread:

Since openVPN is so simple to configure for clients, I've been using a Linksys wrt54g with DD-WRT on it as a VPN endpoint behind my m0n0 firewall I just open the correct UDP port on monowall and point it to the linksys which has a static internal IP. That way, I can access my home network from the road, and it works great.

Until m0n0 has better 'road warrior' VPN, this is how I'll be doing it.

Just fyi to those following this thread:

Since openVPN is so simple to configure for clients, I've been using a Linksys wrt54g with DD-WRT on it as a VPN endpoint behind my m0n0 firewall I just open the correct UDP port on monowall and point it to the linksys which has a static internal IP. That way, I can access my home network from the road, and it works great.

Until m0n0 has better 'road warrior' VPN, this is how I'll be doing it.

I don't understand, what does the m0n0wall VPN not do properly? I use mine from the road constantly, never had any issues with it.

I don't understand, what does the m0n0wall VPN not do properly? I use mine from the road constantly, never had any issues with it.

Cool. I'd like to know what you did to get it set up. I will admin that I didn't try very hard, as my described solution took all of 5 minutes to get set up. Are you using pptp for it?

I don't understand, what does the m0n0wall VPN not do properly? I use mine from the road constantly, never had any issues with it.

Cool. I'd like to know what you did to get it set up. I will admin that I didn't try very hard, as my described solution took all of 5 minutes to get set up. Are you using pptp for it?

Nothing special really. The screen shot shows how simple the setup is. I have one username/password for mine, but I've setup companies that have over 50 VPN usernames and often have 10 to 15 employees connected at once, never any issues.

You do need to create a firewall rule for the PPTP clients though if they are going to access your network or web surf.

Looks pretty simple... thank you for posting. I'll give this a try.

PPTP is an unsecure Microsoft protocol ! 
OpenVPN uses SSL to encrypt the tunnel and is if you use PKI very secure.

I would never use PPTP over OpenVPN.

I would rather drop PPTP in m0n0, to get openvpn

Wish Granted!

http://www.pfsense.org/

 

CS...

PPTP is an unsecure Microsoft protocol ! 
OpenVPN uses SSL to encrypt the tunnel and is if you use PKI very secure.

I would never use PPTP over OpenVPN.

I would rather drop PPTP in m0n0, to get openvpn

Are we still in 1999?

I think a lot of those brute force attacks you are referring to were patched last century.  Go grab the L0phtcrack software and see how easy it is to actually break the encryption on it now. Last I checked, waiting a hundred years for it to finish an offline attack was not realistic for me when I tried. Sure, it can be broken, but until we all have super computers at our disposable, I'm not going to worry about a hacker at a local coffee shop.

I'm sure the OpenVPN is more secure, but saying that any encryption is invincible, well we all know better than that. OpenVPN may take a million years to crack, but how feasible is it really for either?

I'm sure that m0n0wall has the latest updates that go for the PPTP, so I'm not worried about my encryption. Yeah, it's a Microsoft thing, I don't like them much either, but I hate it when FUD is spread around for anything. If m0n0wall goes to OpenVPN, great too.

You should turn on 128-bit encryption. As an added precaution. I use it without any issues.