[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: OpenBSD VPN
- To: misc_(_at_)_openbsd_(_dot_)_org
- Subject: Re: OpenBSD VPN
- From: Jason Opperisano <opie_(_at_)_817west_(_dot_)_com>
- Date: Wed, 16 Feb 2005 19:02:17 -0500
On Wed, 2005-02-16 at 18:53, Shaun Fryer wrote:
> > :>OpenVPN is one solution you could go with. It is not ipsec, though.
> > :>I am running it between my wireless laptop and my openbsd gateway.
> > :>http://openvpn.net/
> > :
> > :PopTop is another:
> > :http://www.poptop.org/
> > poptop uses pptp, which is unacceptable. pptp is insecure, and breaks
> > under nat.
> Are there any good ipsec vpn solutions out there for openbsd which are
> likely to be compatible with vpn to other os'es?
in my experience, openbsd's built-in isakmpd and ipsec stack plays nice
with others (racoon, *swan, checkpoint). many people feel that ipsec is
overly complicated and difficult to deal with.
lots of people like openvpn, and in my experience it also works very
well--it's easy to setup, NAT-friendly, portable.
i would second the notion that PPTP is crap.
"Simpson, Homer Simpson, he's the greatest guy in his-tor-y. From
the town of Springfield, he's about to hit a chestnut tree....D'oh!"
Visit your host, monkey.org