<div dir="ltr">Ah, regarding the VPN, we already have to vpn to get to the first machine, and there's another VPN to get to the internal machines, but the first vpn is instable and causes the second to break, usually pretty quick. Who'd have thunk that nesting VPN's would suck so bad :P.<div><br></div><div>I hadn't thought to try using another VPN because of that. Do you think in light of this new information, do you think open vpn would still be a good option?</div></div><div class="gmail_extra"><br><div class="gmail_quote">On Tue, Jun 23, 2015 at 4:39 PM, Carl T. Miller <span dir="ltr"><<a href="mailto:carl@carltm.com" target="_blank">carl@carltm.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Two thoughts come to mind immediately. One is to use<br>
ssh and set up tunnels for the ssh and socks connections.<br>
The other is to install and use OpenVPN.<br>
<br>
If the developers are very savvy, probably the ssh<br>
solution would be easier to implement and maintain.<br>
The openvpn solution would take longer to set up,<br>
but would be easier for the end users.<br>
<br>
c<br>
<div><div class="h5"><br>
<br>
Chad Crabtree wrote:<br>
> So I'm tasked with building a proxy that will route ssh and HTTP(s)<br>
> through<br>
> a public facing server into the safe side of the network to support<br>
> developers. My first thought was ssh socks proxy to get the job done, but<br>
> I've been doing some research and it seems that it can be done through an<br>
> HTTP proxy too, corkscrew is one I've seen so far.<br>
><br>
> I was hoping I could take advantage of the wiser and more experienced<br>
> among<br>
> us for some alternatives?<br>
><br>
> - Socks Proxy?<br>
> - Http Proxy?<br>
> - ????<br>
><br>
> Whats your suggestion, I have a private network with one computer in the<br>
> DMZ (to restate it 'simply') and I need to allow N users to connect to<br>
> their personal machine on the inside from anywhere.<br>
><br>
><br>
> Thanks for your time.<br>
><br>
> --<br>
> Chad Crabtree<br>
> <a href="tel:734-658-5338" value="+17346585338">734-658-5338</a><br>
</div></div>> _______________________________________________<br>
> washlug mailing list<br>
> <a href="mailto:washlug@washlug.org">washlug@washlug.org</a><br>
> <a href="http://linux.marcdatabase.com/mailman/listinfo/washlug" rel="noreferrer" target="_blank">http://linux.marcdatabase.com/mailman/listinfo/washlug</a><br>
><br>
<br>
<br>
_______________________________________________<br>
washlug mailing list<br>
<a href="mailto:washlug@washlug.org">washlug@washlug.org</a><br>
<a href="http://linux.marcdatabase.com/mailman/listinfo/washlug" rel="noreferrer" target="_blank">http://linux.marcdatabase.com/mailman/listinfo/washlug</a><br>
</blockquote></div><br><br clear="all"><div><br></div>-- <br><div class="gmail_signature">Chad Crabtree<div>734-658-5338<br><div><img src="https://lh5.ggpht.com/_nIocp5t0rLE/TJJhI_VLSQI/AAAAAAAAAQE/8k7QS32Dlgc/s800/n100000187614142_3561.jpg"><br></div></div></div>
</div>