Re: VPN suggestions?
- Date: Wed, 11 Jul 2018 21:59:55 +0100
- From: Joe <joe@xxxxxxxxxxxxxx>
- Subject: Re: VPN suggestions?
On Wed, 11 Jul 2018 16:09:47 -0400
Doug <dmcgarrett@xxxxxxxxxxxxx> wrote:
> On 07/10/2018 10:59 PM, Joe Pfeiffer wrote:
> > Dennis Wicks <wix@xxxxxxxxxx> writes:
> >> Greetings;
> >> I want to set up a VPN for several computers in my house
> >> that are all on a local network.
> >> And suggestions, hints, warnings?
> > Your question as stated doesn't really explain why you want a VPN,
> > and what you're planning to do with it. All you've mentioned is a
> > private network; if that's all you're doing, there's no reason to
> > have a virtual private network on top of it.
> > FWIW, I've got a few machines at home that are networked, but get in
> > remotely from my laptop using a VPN. It's hosted on one of my
> > machines, and I'm just using openvpn.
> You seem to downplay a free VPN. What about TOR Browser?
> Do you know anything about that? I would prefer not to have
> the browsed address know who I am. I think (but I'm not sure)
> that this is the function of TOR Browser.
> Thanx for any info--doug
We need the OP's application first. There are three very different main
reasons for using a VPN:
1. For using a computer on an insecure Internet connection, such as
free wifi in a restaurant. You make a VPN connection to a server
somewhere, which may be a machine at home, and route all Internet
traffic through this encrypted link and out onto the Net from the VPN
2. For moving your apparent home public IP address to some other
location, either just for anonymity or to the other side of a
censorship or copyright firewall.
3. From outside a private network, to access resources within the
Things become complicated if multiple machines in one network need to
connect to a second network, or an external VPN server. Some VPN
protocols only permit one connection between two public IP addresses
(or at least their implementation or local firewall conntrack code does)
and a site-to-site VPN may need to be implemented between the two
Internet routers. Site-to-site can be done between network hosts rather
than routers, but the routing gets messy then.