Re: design and built a firewall

[John Tully <tully at mt.lv>]

Hello Didier,

The MikroTik RouterOS can do all of that.  You can put RouterOS boxes where 
you had the "FreeBSD or Linux box (city 1)".  Use 128bit PPTP VPN between 
the two and then add Ethernet over IP to bridge the LANs.  You can also put 
bandwidth shaping on the VPN so that it won't use too much bandwidth.

You can do this with the free "demo" license -- no expiration.

Full instructions can be found in the MikroTik RouterOS docs with a diagram 
showing this.

For the PPTP tunnel
http://www.mikrotik.com/Documentation/manual_2.5/Interface/PPTP.html

For the Ethernet over IP tunnel
http://www.mikrotik.com/Documentation/manual_2.5/Interface/EoIP.html

Sincerely,

John Tully

At 08:18 PM 6/12/2002 +0100, you wrote:

>I would like to setup secure transaction between to locations in 2
>ddifferents cities through internet.
>
>The data will take this route:
>1. LAN  (city 1)
>2. FreeBSD or Linux box (city 1)
>3. Cisco 3600 c(city 1)
>4. Internet cloud
>5. Cisco 2600 (city 2)
>6. FreeBSD or Linux box (city 2)
>7. LAN (city 2)
>
>Questions:
>
>. Do I have to use special firewall device like Cisco PIX Firewall or I
>can setup  afirewall using FreeBSD box?
>. I have control of the 2 routers. What di  I have to do in the router
>config?
>. Any suggestion to setup the secure transaction and/or a VPN ??
>
>
>Didier
>
>
>
>-----
>This is the afnog mailing list, managed by Majordomo 1.94.5
>
>To send a message to this list, e-mail afnog at afnog.org
>To send a request to majordomo, e-mail majordomo at afnog.org and put
>your request in the body of the message (i.e use "help" for help)
>
>This list is maintained by owner-afnog at afnog.org



-----
This is the afnog mailing list, managed by Majordomo 1.94.5

To send a message to this list, e-mail afnog at afnog.org
To send a request to majordomo, e-mail majordomo at afnog.org and put
your request in the body of the message (i.e use "help" for help)

This list is maintained by owner-afnog at afnog.org