Build VPN Server & Client

I personally find that OpenVPN is quite easy and suitable.  Have a look at http://openvpn.net/ and it even has got Windows GUI client... http://openvpn.se/

I am not sure both openVPN & OpenSwan, but I may interested in OpenSwan because it uses IPSEC as I put much on security.

I am not sure how to configure OpenSwan based on my mentioned on the information above.

Hope you can help and show how to configure or give the instructions?


Thanks,
VNK

Assume that I have a LAN: Windows 2003 as DC+File Server IP: 192.168.1.1, Linux Mail Server (Sendmail+Dovecot) IP: 192.168.1.2, Linux Proxy+Firewall+VPN server with 2 NICs( Local IP: 192.168.1.254 & External IP: 202.79.26.189, and another 3 client machines IP: 192.168.1.5-7.

So, what is the configuration so that the client from outside LAN can connect to office to access the file, email.

Open swan: if used everywhere.... (it will know if it is the server by the left= line, if that isn't a local interface, then you're right....)

ipsec.secrets:
---8<---
me@central.place someone@somewhere.need.access: PSK "This needs to be a rather long *random* string as it is a key, some appliences may restrict it"
---8<---

ipsec.conf:
---8<---
conn any2central:
     auto=start
     leftid=me@central.place
     left=202.79.26.189
     leftsubnet=192.168.1.0/24   # might restrict this to 192.168.1.0/252    (4 addresses 192.168.1.X where X=0, 1, 2, 3)
     leftsourceip=192.168.1.254
     rightid=someone@somewhere.need.access
     right=0.0.0.0
     keylife=28800                    # in seconds
     pfs=yes                             # uses Diffie Hellman 2 key for elongation.., can be left out. (perfect forward security)
     authby=secret                    # use preshared secret
---8<---
Ther is more to choose from, depending requirements.
 

The openswan solution in itself is valid, I don't know if svannak choose to use it.