[KLUG Members] SUSE & vpn

[Mike Williams]

>
> From:
> bill <billtron at billtronservices.com>
>
>
>I don't see any version of OpenVPN as part of the default install of
>SUSE 9.2.  
>
>I've heard that it comes with 9.3.  Is that true?
>
>If so, is the version that comes version 2.0 of OpenVPN?
>
>I can't find a RPM of OpenVPN 2.0 for Suse 9.2.  So....which would be
>easier, creating a RPM (haven't done that before) or upgrading to SUSE
>9.3?
>
I tried (briefly) to connect a Suse 9.2 box (OpenVPN 1) to a SuSE 9.3 
box (OpenVPN 2).  It sorta worked, in spite of complaining about version 
mismatches.  I installed OpenVPN 2 on the 9.2 box, and it worked a 
little better.  I can't remember if I installed from source or an RPM, 
but it didn't matter since I was able to come up with another box I 
could make a 9.3 to handle that end of the tunnel. 

9.3 has a much better Yast firewall module than 9.2, but it's still not 
enough to get OpenVPN fully working.  You have to do some manual editing 
of /etc/sysconfig/SuSEfirewall2, but that file includes some of the best 
commenting I've ever seen.  You have to add the tunnel device to your 
internal (or dmz, I suppose) zone, and if you end up with 2 devices in 
the same zone you have to enable "routing between classes" or something 
down in the advanced settings.  Works beautifully, though!