It depends. For a single system it's really easy. If you need to connect to hundreds of nodes... its more complex. But in any case in a week you should be able to read all the documentation available and become a vpn guru<br>
<div style="margin: 2em 0pt;" name="sig_d54da95bb8"><strong>Jordi Soucheiron</strong><br>
Software Engineer<br>
<br>
<strong>DEXMA</strong><br>
Parc Tecnològic la Salle<br>
Sant Joan de la Salle, 42<br>
08022 Barcelona<br>
t/f: [+34] 93 181 01 96<br>
<a style="color: rgb(102, 153, 0);" href="http://www.dexmatech.com" target="_blank">www.dexmatech.com</a><br>
<a style="color: rgb(102, 153, 0);" href="mailto:jsoucheiron@dexmatech.com" target="_blank">jsoucheiron@dexmatech.com</a><br>
</div><div class="gmail_quote">2010/8/23 Robert <span dir="ltr"><<a href="mailto:Robert@supporttime.com">Robert@supporttime.com</a>></span><br><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<div>
<font face="Calibri, Verdana, Helvetica, Arial"><span style="font-size: 11pt;">Hi Jordi,<br>
<br>
Thanks for the suggestion. VPN sounds like an interesting idea, I’m worried that it’s a little overkill for what we need though?<br>
<br>
We simply need to gain SSH access from the outside world, we don’t need any other inbound services.<br>
<br>
How easy is it to configure a VPN connection that is self-maintaining, so we can ensure it’s always up?<br>
<br>
Thanks,<br>
<br>
Robert<div class="im"><br>
<br>
<br>
On 23/08/2010 10:31, "Jordi Soucheiron" <<a href="http://jsoucheiron@dexmatech.com" target="_blank">jsoucheiron@dexmatech.com</a>> wrote:<br>
<br>
</div></span></font><blockquote><font face="Calibri, Verdana, Helvetica, Arial"><span style="font-size: 11pt;"><div class="im">Hi Robert,<br>
There are several ways to do what you're asking, but provably you'll want to use openvpn with a custom configuration for each client (to be able to set a static ip to every single system) instead of reverse ssh tunnels.<br>
Have a nice day<br>
<b>Jordi Soucheiron<br>
</b>Software Engineer<br>
<br>
<b>DEXMA<br>
</b>Parc Tecnològic la Salle<br>
Sant Joan de la Salle, 42<br>
08022 Barcelona<br>
t/f: [+34] 93 181 01 96<br>
</div><a href="http://www.dexmatech.com" target="_blank">www.dexmatech.com</a> <<a href="http://www.dexmatech.com" target="_blank">http://www.dexmatech.com</a>> <br><div class="im">
<a href="http://jsoucheiron@dexmatech.com" target="_blank">jsoucheiron@dexmatech.com</a><br>
2010/8/23 Robert <<a href="http://Robert@supporttime.com" target="_blank">Robert@supporttime.com</a>><br>
</div></span></font><div class="im"><blockquote><font face="Calibri, Verdana, Helvetica, Arial"><span style="font-size: 11pt;">Morning Everyone,<br>
<br>
I hope you all had a good weekend.<br>
<br>
I’m playing around today with reverse SSH tunnels. We often place our systems behind a client firewall and sometimes we don’t have access to configure port forwarding so that we can gain SSH access to our system from the outside world.<br>
<br>
I understand that reverse SSH tunnels would allow me to do this? I can configure our system to create a tunnel to the outside world which we can then use to bypass the firewall to gain access, is that correct?<br>
<br>
I’ve done some reading and it would seem that creating the reverse SSH tunnel is very simple. However, I need to ensure that the connection is established and maintained at all times.<br>
<br>
Does anyone have any experience with doing this?<br>
<br>
Thanks,<br>
<font color="#888888"><br>
Robert</font> <br>
<br>
_______________________________________________<br>
Voyage-linux mailing list<br>
<a href="http://Voyage-linux@list.voyage.hk" target="_blank">Voyage-linux@list.voyage.hk</a><br>
<a href="http://list.voyage.hk/mailman/listinfo/voyage-linux" target="_blank">http://list.voyage.hk/mailman/listinfo/voyage-linux</a><br>
<br>
</span></font></blockquote><font face="Calibri, Verdana, Helvetica, Arial"><span style="font-size: 11pt;"><br>
<br>
</span></font></div></blockquote>
</div>
</blockquote></div><br>