After spending a fair amount of time trying to find the IP subnets which Steam uses I came up a blank, so I went to Arin.
All posts in internet
Let me start off by saying that using certificates for your IPSec VPNs adds another layer of complexity onto your connections. However what I’ve tried to do is to make this how to guide as easy to follow as I possibly can.
By using certificates we can negate the requirements to use pre shared keys and thus are considered more secure and if we have lots of tunnels it means we don’t have to worry about having a separate key for each connection therefore providing a great deal of scalability.
Many vendors have got the various IPSec standards already implemented within their products for ease of use. This is my configuration for matching these standards with Strongswan.
It’s always nice to use a standard; they come from RFCs so have some level of scrutiny and make things interoperable. These suites in my experience tend to be the ones which are implemented most widely. As a security professional I’m happy that someone has investigated the best solutions with which to use.
This tutorial will guide you through setting up a VPN from your pfsense firewall router, to your Ubuntu server hosted in the cloud. Many of these vendors have the capability to setup a site to site VPN through the control panels, but this tutorial doesn’t require anything except for an external IP address on your Linux box.
Continue reading →
Sometimes you need a list of public DNS servers, there are some common ones and some not so common ones, here I present my go to list. These are in no way endorsed, but I do use them all fairly regularly. Where I say some services are Alternate Root these servers may give you different results than the rest.