3
1
I have multiple computers on an insecure network (with third party, untrusted computers). My computers and the third party computers are all behind the same firewall.
Currently my computer's software firewalls are configured to block all traffic from other computers on the network. Unfortunately this does not enable my computers to talk with each other. I would like to modify the setup in such a way that my computers can communicate securely, but no third party systems can impersonate one of my computers or eavesdrop on the communication between my computers.
The problem:
- I cannot modify the firewall that all of the computers are behind
- I cannot use static IPs
Can this be done using a VPN or maybe a second hardware firewall? If not, is there some other solution?
I have full administrator access to all of my computers and can add any needed hardware. All of my computers are currently using Windows 7.
How would the firewalls be configured on the clients? Assuming I use OpenVPN and certificate-based authentication, would it be as simple as instructing the server's firewall to allow OpenVPN to accept connections or would there be more advanced configuration requirements? – HardwareWoahs – 2011-06-19T06:16:25.990
@HardwareWoahs: It would be enough. – user1686 – 2011-06-19T08:32:48.307
I will be accepting this solution and will use a third party service to coordinate the VPN server's internal IP address with the clients. Thanks! – HardwareWoahs – 2011-06-19T15:28:08.777