[Leaplist] IPCop "Blue" zone, IPSec and OpenVPN,
etc... -- WAS: Another HW Q: Wireless Router?
Jason Boxman
jasonb at edseek.com
Fri Sep 18 14:02:16 EDT 2009
On Friday 18 September 2009 01:41:56 pm Bryan J. Smith wrote:
> I gave up on avoiding NIH (Not Invented Here) long ago.
>
> I decided if I was going to do anything, and if an existing solution
> did not work for me, I would modify it and submit a patch. I've done
> that for several projects now (typically unattributed, but there's been
> a few times where I've seen my name added and I didn't know).
>
> I love IPCop because ...
> - The "typical" four (4) zone setup option, with basic traffic shaping
> - Squid, Snort and IPSec built-in, OpenVPN and Filtering are easy add-ons
> - The "typical" default rules expected (anyone-> RED, GREEN -> AMBER, BLUE)
> - Everything is in a nice, menu/tab-based GUI
For my traffic I needed to custom patch my kernel with ipp2p. Haven't looked
recently to see if ipp2p is in the mainline kernel. I also needed an ATM
patch so traffic shaping would be more effective over a DSL connection, which
uses ATM as its actual link layer thing. (52-byte, 48-byte payload, fixed
length, which really sucks when trying to shape IP traffic.)
I have a junk 2Wire thing from Embarq I use now. It's awful and invasive, but
fine for the present. It likes to hijack your HTTP when it sees something it
doesn't like and redirect you to 2wire.net. Unfortunately, I don't use its
internal DNS, so 2wire.net goes nowhere. Makes for fun when trying to figure
out why only HTTP traffic won't pass! Stupid device.
--
"Don't put it in your mouth." - Arctic Silver 5 Manual
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
More information about the Leaplist
mailing list