VPN for one or two internal clients only?

dirky

Hi,
I am using pfsense 2.0.1. I have 2 interfaces, LAN and WAN.
I would like to set a VPN connection up from the pfsense which is only active for the internal clients I choose. (one or maybe 2)
I would like to be able to toggle this connection off and on in the firewall so that when it is not active these clients take
the default route via the WAN interface.
I'm in the UK and would like to have my AppleTV connect through VPN to the US Netflix servers via a US VPN.
I need the ability to toggle this off so they fall back to appearing to come from my UK ip address.

If this is possible, can it be done with PPTP or do I need OpenVPN ?

Any pointers to how to set this up would be welcome.
Thanks
Mike

marcelloc

First you need to know What VPN protocols your apple tv support.

If you want, configure this VPN to us on pfsense so you can enable and disable tunnel when you want

dirky

@marcelloc:

First you need to know What VPN protocols your apple tv support.

If you want, configure this VPN to us on pfsense so you can enable and disable tunnel when you want

thanks, I was hoping to avoid setting up VPN on the apple tv. I wanted to tunnel the traffic from the apple tv down the VPN.

dirky

Anybody have an idea about this?
Thanks

marcelloc

@dirky:

If you want, configure this VPN to us on pfsense so you can enable and disable tunnel when you want

Isn't this an answer for your question?

dirky

@marcelloc:

@dirky:

If you want, configure this VPN to us on pfsense so you can enable and disable tunnel when you want

Isn't this an answer for your question?

Sorry I didn't fully understand your answer.
I don't have a VPN client on the Apple TV.

Can I create a VPN tunnel which only passes traffic from one internal source IP?
I want all other traffic to pass out via the normal route?
Which type of VPN connection must I use on pfsense?

Thanks for your time

marcelloc

What kind of VPN server do you have on US side?

If you specify specific networks/hosts on this VPN tunnel, you can get a single client to use it.

dirky

@marcelloc:

What kind of VPN server do you have on US side?

If you specify specific networks/hosts on this VPN tunnel, you can get a single client to use it.

I'd prefer to use PPTP as it is the cheapest option cost wise.  Is it possible with that?
Thanks

marcelloc

I think the best way is using ipsec or openvpn.

Both has specific source network/host and destination network/hosts