[Cialug] stunnel or something else?
Josh More
jmore at starmind.org
Sat Feb 4 13:30:37 CST 2012
(I am ignoring the stunnel question, as I am not an expert in that tech.)
IME, OpenVPN is easier to set up and maintain than SSH tunnels. You
basically turn it on, create users and generate keys. Then your users just
run the client and feed it the config file you've given them. That's it.
The only thing I don't like about it is that you have to run it as
admin/root (network interface binding).
-Josh
On Sat, Feb 4, 2012 at 2:27 PM, Matthew Nuzum <newz at bearfruit.org> wrote:
> On Sat, Feb 4, 2012 at 11:29 AM, kristau <kristau at gmail.com> wrote:
>
> > Would ssh tunneling or openvpn work as alternatives?
> >
>
> Well, I know openvpn will work, but I was under the impression that openvpn
> was complex and the setup was multi-step, whereas stunnel was simple. :-)
> TBH, vpn is probably quite a bit more complex than I want because there are
> three other people working with me on this and I don't want to have to
> worry about what OS they use and how to configure networking.
>
> However, the ssh tunneling could work. We all have openssh keys and there's
> even a Makefile for the project that has a 'make run' directive that could
> easily build and tear down the ssh tunnel on demand. I will probably do
> that.
>
> Still, this begs the question, is stunnel no longer the right tool for
> doing this kind of stuff? I had thought that I might use this same process
> for setting up a tunnel for two mongodb servers to replicate.
>
> --
> Matthew Nuzum
> newz2000 on freenode, skype, linkedin and twitter
>
> ♫ You're never fully dressed without a smile! ♫
> _______________________________________________
> Cialug mailing list
> Cialug at cialug.org
> http://cialug.org/mailman/listinfo/cialug
>
More information about the Cialug
mailing list