[194523] in North American Network Operators' Group
Re: Ingress filtering from an external cloud service to the internal
daemon@ATHENA.MIT.EDU (George William Herbert)
Fri May 5 11:13:14 2017
X-Original-To: nanog@nanog.org
In-Reply-To: <4E275B0B9F6F5445ACE48FBBB2AC3B14CAD3C3B8@ExchMBXProd02.win.lottery.state.or.us>
From: George William Herbert <george.herbert@gmail.com>
Date: Fri, 5 May 2017 08:13:07 -0700
To: "Torres, Matt" <matt.torres@state.or.us>
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
You can usually run OpenVPN from a cloud host. The source IP changing possib=
ly should require only one open exception to the local VPN termination point=
.
Better, find a cloud that doesn't do that shit with changing endpoints and g=
ives you real VPNs. What sort of cloud doesn't these days?...?...
Sent from my iPhone
> On May 4, 2017, at 10:08 AM, Torres, Matt <matt.torres@state.or.us> wrote:=
>=20
> Unfortunately, a private connection or VPN to the cloud service provider i=
s not available right now, but I can see how that could help solve my proble=
m. :-)
> ~Matt
>=20
>> Is it possible for you to get a private/direct connect service from your n=
etwork perimeter to the cloud provider and eliminate using the public connec=
tivity?=20
>>=20
>> Or because its Internet-based you have to use public connectivity?
