Tunnelblick using OpenVPN is imho the best solution for making VPN connections on Macs, and I have been using it for years …
It's relatively easy to set up, very extensible and OpenSource.
However there always have been some small improvements I wanted to have such as :
» TimeMachine not always starting, while I am on the road and have my bridged tunnel open to home – TimeMachine starts and backs up recent changes to my home server. This saturates the line and on most connections just isn't feasible to even backup 20 MB without having to pause other work that goes over the tunnel. So I had to manually turn it off and on all the time – very annoying.
» Growl Notifications on connection und disconnection events. I like Growl very much, it's informative, unobtrusive and very costumizable. And even though there exists a patch for Tunnelblick which integrates Growl support – it was unfortunately not included in the main branch – so I had always to repatch and recompile every new tunnelblick version I wanted to use – very annoying too …
» Setting my nameserver to the one inside my home network, so I can access all my ressources via the internal domain name (such as xyz.local) .
I looked through the available options for implementing this stuff and figured out it would be the best (read : simple) solution to use the integrated up and down script features of OpenVPN.
Most stuff was only poking through the docs, but one thing was a hard nut, if I changed the TimeMachine preferences, the MenuIcon would not reflect that, because it hasn't been notified … Funnily even if you change it in the TimeMachine PrefPane it doesn't update correctly for me (10.6.5).
more » »