Link to home
Start Free TrialLog in
Avatar of Frosty555
Frosty555Flag for Canada

asked on

Network-wide VPN internet anonymizer

I'm trying to figure out how to set up my network to do this:

I want to sign up for a VPN "anonymizer" service like StrongVPN - a service like this provides you with either PPTP, L2TP or OpenVPN access to their VPN servers. You can then connect to the VPN, and your computer's internet connection is encrypted and tunneled through their network - anonymizing you.

That works for one computer... but lets say you wanted to do it for the whole network?

For that you need to set up the service on your router. Most routers don't support this kind of "VPN client" mode... what is the feature called?

I know DD-WRT can do it... but are there higher end commercial devices that support it like Cisco routers or security appliances?

Lastly.... i'd like to configure routing so that only CERTAIN traffic passes through the VPN gateway, while other traffic passes unimpeded through the regular internet. E.g all traffic destined for a certain IP or going on a particular por tgoes through the VPN. Other traffic goes through the regular internet.

I'm imagining a setup with maybe a Dual-WAN router... one is regular internet and the other is the VPN? But how is this done in real life?

Can somebody give me an example of how this would be configured?

I understand I will need more sophisticated networking equipment. Maybe more than one router, or higher end Cisco equipment. That's totally fine. I have a budget of about $500-800 in network equipment to make it work so I can buy whatever networking hardware is needed to make this happen.

How would you set up a network like this?
Avatar of asavener
asavener
Flag of United States of America image

You may want to investigate TOR, which will allow you to create a gateway that your entire network can use.

https://www.torproject.org/about/overview.html



An inexpensive router capable of policy-based routing would allow you to send certain traffic to the anonymizer, and allow other traffic to just go out the Internet.
Avatar of Frosty555

ASKER

That second paragraph is what I'm trying to figure out. Can you elaborate a bit? Or give an example of how that would be configured on your favourite piece of hardware?
SOLUTION
Avatar of asavener
asavener
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
ASKER CERTIFIED SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Added more detail in my solution