Re: any VPN program at linux?

From: Johannes Ullrich (jullrich@euclidian.com)
Date: 11/22/02

Next message: kevin: "Re: Kerio Personal Firewall"

Previous message: Benjamin Meade: "RE: Company Firewall's IP Address"
In reply to: SB CH: "any VPN program at linux?"
Next in thread: Kilian CAVALOTTI: "Re: any VPN program at linux?"
Reply: Kilian CAVALOTTI: "Re: any VPN program at linux?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Thu, 21 Nov 2002 20:56:28 -0500
From: "Johannes Ullrich" <jullrich@euclidian.com>
To: "SB CH" <chulmin2@hotmail.com>

> I would like to use VPN at linux?
> Do you know any recommendable program?

short answer: plenty...

(1) ssh tunnels, in particular tunneling PPP over ssh
  (+) easy to setup
  (-) only works linux-linux
  (-) tunnels everything over tcp.

(2) CIPE
  (+) comes with redhat.
  (+) a bit better performances (UDP, not TCP like ssh)
  (o) harder to setup then ssh, but not as hard as IPSEC ;-)
  (-) no Windows support I know off.

(3) FreeSwan (IPSEC)
  (+) full IPSec implementation. Very interoperaple.
  (+) very flexible
  (-) pain to setup
  (-) problems with NAT

(4) PPTP (Microsoft VPN)
  (+) works great with all versions of Windows.
  (+) not hard to setup.
  (-) frequently considered less secure then alternatives.
  (-) not as flexible and not as good interoperable as IPSec.
      (but works great as long as you deal with Windows/Linux machines)

There is a pretty good New Riders book: Building Linux VPNs. It walks
you through all these systems (and probably a couple more I forgot)

-- 
--------------------------------------------------------------------
jullrich@euclidian.com             Collaborative Intrusion Detection
                                         join http://www.dshield.org

application/pgp-signature attachment: stored

Next message: kevin: "Re: Kerio Personal Firewall"
Previous message: Benjamin Meade: "RE: Company Firewall's IP Address"
In reply to: SB CH: "any VPN program at linux?"
Next in thread: Kilian CAVALOTTI: "Re: any VPN program at linux?"
Reply: Kilian CAVALOTTI: "Re: any VPN program at linux?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

AW: any VPN program at linux?
... >>>ssh tunnels, in particular tunneling PPP over ssh ... OpenSSH for Window$ ... but not as hard as IPSEC;-) ...
(Security-Basics)
Re: Problem w/symantec firewall & SSH Tunnel
... Luckily the service I use for VPN that also supplies services for SSH ... something to do with the firewall. ... >> I have joined a service that provides VPN and SSH Tunnels. ...
(comp.security.ssh)
Re: Relationship SSH <-> VPN ??
... > I am wondering about the relationsship of the technologies of VPN vs. SSH. ... Virtual Private Network is a concept that goes back to the old telephone ... The favourite today is IPSec. ...
(comp.security.misc)
Re: Frage zu Ports
... > mir einen SSH Tunnel oder IPSec vorstellen. ... Endpunkten aufgemacht. ... Bei IPSec kann ich da (echt VPN) zwei Netzwerke ...
(microsoft.public.de.security.netzwerk.sicherheit)
Re: Relationship SSH <-> VPN ??
... > I am wondering about the relationsship of the technologies of VPN vs. SSH. ... VPN is a general term. ... ipsec is the technology behind the general term VPN. ...
(comp.security.misc)