[ale] HomeVPN

Richard Bronosky richardbronosky at gmail.com
Wed Nov 14 06:53:23 EST 2012


If this is for home use, then you probably have only 1 public IP and are
using NAT internally. If so, you can publicly host DNS that exposes your
private IPs (10. or 192.168. etc.) with impunity.
On Nov 13, 2012 5:04 PM, "Brian MacLeod" <nym.bnm at gmail.com> wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA256
>
> On 11/13/12 4:50 PM, Robert L. Harris wrote:
> >
> > yeah, didn't think it was possible,  would be nice though.
> >
>
> On the other hand, should you have your own domain, you could publish
> (*PUBLICALLY*) addresses to your internal network (or use external
> addresses), and then specifically tell OpenVPN to push routes that
> would direct traffic to those destination IPs through the VPN
> connection. If you publish the externals, redirecting gets messy --
> you also have to get a little loose with any firewall/forwarding rules
> on the VPN hosts (and potentially intervening hosts, since they need
> to know how to route packets BACK to the clients).  But if you publish
> internal network addresses, it wouldn't be too bad since defining a
> route to your internal network is expected.  Also, take into
> consideration that there may be hosts/addresses in use on the clients'
> current network that may use similar addressing schemes.  You'd likely
> know this before it became and application/sharing problem because
> likely you'd overlap on connection, and thus have problems establishing...
>
>
> It can work.  It's not easy, prone to mistakes, and, prone to being an
> inadvertent entry point into your network.
>
> There be dragons here.
>
> bnm
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG/MacGPG2 v2.0.18 (Darwin)
> Comment: Using GnuPG with Mozilla - http://www.enigmail.net/
>
> iQE4BAEBCAAiBQJQosPJGxhoa3A6Ly9rZXlzZXJ2ZXIudWJ1bnR1LmNvbQAKCRD5
> XCJY/q4Y6FcEB/9VwZml67U85+nCtJ1m5HJq3BR+vpb2lUxCzhxTxK2Ro8cOXtvF
> 99hb+kuaeMtl3eEnMKubXnBCoCypjxyKQgzCIJdbIpj6kKoqUOzuxiChGHUNhYjF
> oAZHmnwfwkWcwVU0UUwT+hBNRe5ep7QGEMxsgtNju69zeIzjHnTXEhgYdPRQeGz4
> n7Hg/hgnxHgsYQFc1xFGqKsov2GZX/IPI2b3YnEt21pzqOZZe9/2r5/fiG3vf4N8
> o2dY08TYh0YhuqASx1+WM0qvyPOVcMgTVMU9+Kh8Qnly7HgN5wV4zNnpAjKoG5n4
> 1IBoaQF3cHVhxOAstxa6ltUUNlWW3nf2R2x2
> =XkA+
> -----END PGP SIGNATURE-----
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://mail.ale.org/mailman/listinfo/ale
> See JOBS, ANNOUNCE and SCHOOLS lists at
> http://mail.ale.org/mailman/listinfo
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.ale.org/pipermail/ale/attachments/20121114/e0b6343a/attachment.html>


More information about the Ale mailing list