[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Remote login

Use openvpn for six years now. It works great, except for remote login from iPhones. Some of the phones got upgraded to the latest firmware and can't be jailedbreaked, so no openvpn support. Then again, there is no official support of openvpn on iPhones. The tmp solution...random dir name and random port with limited access. Also, apache dir protection. I totally agree corp financial data should never be opened on a public facing port. It hurts that we have to let iPhone users access sl that way.


On Mar 26, 2010, at 10:39 PM, Luke <..hidden..> wrote:

On Sat, 27 Mar 2010, David Godfrey wrote:

We Looked at openvpn and other VPN options, but there are limitations,


including the setup requirements, and issues with dynamic IP's

Which issues are those?  Given that I do it on a daily basis, I am

It currently does require that the server have a world accessible ssh
server, but then OpenVPN also needs world accessible ports too.

There are solutions such as port knocking to deal with that, if it is a

However, with OpenVPN, assuming you don't run it in server-client mode,
the ports don't actually have to be open.
That is why it can work through firewalls.

Of course, it does require extra setup, but there are windows versions,
and scripts can be distributed.

I'm not saying that ssh does not have a valid place in this--it is easier to do port forwarding, for example--but I'm not sold on your reasons for
avoiding OpenVPN yet.


--- --- --- ---------------------------------------------------------------------
Download Intel&#174; Parallel Studio Eval
Try the new software tools for yourself. Speed compiling, find bugs
proactively, and fine-tune applications for parallel performance.
See why Intel Parallel Studio got high marks during beta.
Ledger-smb-users mailing list