VPN Tunnels

From: Chris Berry (compjma@hotmail.com)
Date: 06/12/02 

Date: 12 Jun 2002 20:31:16 -0000
From: Chris Berry <compjma@hotmail.com>
To: security-basics@securityfocus.com
('binary' encoding is not supported, stored as-is)

    I understand that VPN tunnels are a form of PKI encryption that
encapsulates packets between two computers so that they can communicate
more securely over an untrusted network (i.e. the internet). What I don't
know is how to set one up. I've got a mostly Windows 2000 network with a
little Mandrake linux I'm working in as I figure things out. I have two
main desires for VPN, first is to secure the communcations our clients use
to remotely access our network which currently uses symmetric encrption,
and second to allow me to log in to the network from home in case of
problems or late night work with some degree of security. I plan to use
VNC for the home connection and I think I know enought to set it up to go
through ssh, but given that I'll be sending my admin password at times, I
don't think thats enough. What I'd like to know is if anyone knows how to
set up a windows or linux VPN, or where I could go to find that
information. I tried amazon.com but I didn't see any good books on the
subject. I do my own homework, I just need someone to point me in the
right direction. Also, my budget is basically non-existant so I can't
just rush out and buy a VPN appliance like a sonic wall box or something.
Eventually we plan to replace our cheap cayman DSL router with a Cisco
1720 but I don't know if it has any VPN capabilities. The worst part is
that I'm going to need to be able to explain how to do all this to our
client at the other end as well, so I need to get a pretty good grasp of
the practical parts, not just the theory.

Relevant Pages

  • RE: [Full-Disclosure] CISCO Vpn
    ... Citrix Secure gateway.. ... >>I have been asked what the PROs and CONs of setting up a vpn would be. ... > the inside of the network between your Cisco VPN device and the internal ... Also consider that a home system will ...
    (Full-Disclosure)
  • Re: [Full-disclosure] Remote Desktop Command Fixation Attacks
    ... This set of steps is redundant in many places, and it's also enormously expensive, since you're using no less than three different expensive bits of networking hardware (AP, PIX, VPN Concentrator), in addition to a bunch of x86 server hardware, windows server licenses, and at least one ISA license. ... Your computers necessarily don't have full access to your network infrastructure when they aren't logged on, so GPOs, software updates, etc can't be applied at the times you want them to be applied. ... Turning on, enabling, and implementing every possible security setting and device you think of is not defence in depth, and will probably only have two effects - your users won't use your wireless network, and you'll burn so much cash you won't have any left to spend on *useful* security measures. ...
    (Full-Disclosure)
  • Re: Problem w/symantec firewall & SSH Tunnel
    ... VPN stands for virtual private network. ... computers and it's just as secure. ...
    (comp.security.ssh)
  • RE: VPN and Security
    ... Do you mean for a more secure setup he should split tunnel? ... the split tunneling makes me think 'less secure' precisely ... network printer or accessing a share on the file server at the office. ... Subject: VPN and Security ...
    (Security-Basics)
  • Re: RWW revisited
    ... RDP doesn't expose the target network to the client unless you ... maniuplating the remote via the images. ... done from an untrusted client (neither should VPN). ... >> You wanted to know how secure RWW was and I'm comparing to a VPN ...
    (microsoft.public.windows.server.sbs)
Loading