[Cialug] stunnel or something else?

Andrew Denner linux-list at upeke.com
Sun Feb 5 11:14:37 CST 2012 

OpenVPN is also cross platform (*nix os x and windows) and for those in the
windows world if you drop the config file and certificates in the right
spot it is fairly fool proof. (except for the whole root requirement)

SSH tunnels also are cross platform but I agree with Josh that they are not
as easy to setup and maintain.

On Sat, Feb 4, 2012 at 1:30 PM, Josh More <jmore at starmind.org> wrote:

> (I am ignoring the stunnel question, as I am not an expert in that tech.)
>
> IME, OpenVPN is easier to set up and maintain than SSH tunnels. You
> basically turn it on, create users and generate keys. Then your users just
> run the client and feed it the config file you've given them. That's it.
>
> The only thing I don't like about it is that you have to run it as
> admin/root (network interface binding).
>
> -Josh
>
> On Sat, Feb 4, 2012 at 2:27 PM, Matthew Nuzum <newz at bearfruit.org> wrote:
>
> > On Sat, Feb 4, 2012 at 11:29 AM, kristau <kristau at gmail.com> wrote:
> >
> > > Would ssh tunneling or openvpn work as alternatives?
> > >
> >
> > Well, I know openvpn will work, but I was under the impression that
> openvpn
> > was complex and the setup was multi-step, whereas stunnel was simple. :-)
> > TBH, vpn is probably quite a bit more complex than I want because there
> are
> > three other people working with me on this and I don't want to have to
> > worry about what OS they use and how to configure networking.
> >
> > However, the ssh tunneling could work. We all have openssh keys and
> there's
> > even a Makefile for the project that has a 'make run' directive that
> could
> > easily build and tear down the ssh tunnel on demand. I will probably do
> > that.
> >
> > Still, this begs the question, is stunnel no longer the right tool for
> > doing this kind of stuff? I had thought that I might use this same
> process
> > for setting up a tunnel for two mongodb servers to replicate.
> >
> > --
> > Matthew Nuzum
> > newz2000 on freenode, skype, linkedin and twitter
> >
> > ♫ You're never fully dressed without a smile! ♫
> > _______________________________________________
> > Cialug mailing list
> > Cialug at cialug.org
> > http://cialug.org/mailman/listinfo/cialug
> >
> _______________________________________________
> Cialug mailing list
> Cialug at cialug.org
> http://cialug.org/mailman/listinfo/cialug
>

More information about the Cialug mailing list