On Sun, Jun 22, 2008 at 09:09:13PM -0500, John M. Dlugosz
wrote:> I''m using Debian Etch, and initially used "firestarter"
to set up rules
> to simply allow the ports I needed for Apache, email, FTP, etc.
>
Excellent. When you switch to Shorewall make sure to start by using the
shorewall-perl package available from my repository. (I maintain the
official Debian package and make the latest Shorewall available for Etch
at my personal website.)
> But I want to set up a VPN to my home Windows Vista machine, and access
> Samba etc. over that tunnel only.
>
> The "connect to workplace computer / VPN" option in Vista
mentions pptp
> and TCP port 1723.
>
Please don''t use pptp. If you are going to setup a VPN tunnel, invest
a
little time and learn about OpenVPN, IPsec, or IPsec+L2TP.
> First, can shorewall be used to stealth all ports except those I want to
> expose for the server, as I did before; plus provide a tunnel that works
> with Vista that I can bind Samba to?
>
Shorewall can do just about anything you want it to do.
> From what I''ve read, I''m pretty sure it can. But
reading the various
> HOWTOs and guides, I''m totally lost. Can someone point me to
something
> specific for this kind of setup?
>
Which HOWTOs have you started with?
Regards,
-Roberto
--
Roberto C. Sánchez
http://people.connexer.com/~roberto
http://www.connexer.com
-------------------------------------------------------------------------
Check out the new SourceForge.net Marketplace.
It''s the best place to buy or sell services for
just about anything Open Source.
http://sourceforge.net/services/buy/index.php