[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: OpenBSD VPN

To: misc_(_at_)_openbsd_(_dot_)_org
Subject: Re: OpenBSD VPN
From: Jason Opperisano <opie_(_at_)_817west_(_dot_)_com>
Date: Wed, 16 Feb 2005 19:02:17 -0500

On Wed, 2005-02-16 at 18:53, Shaun Fryer wrote:
> > :>OpenVPN is one solution you could go with.  It is not ipsec, though.
> > :>I am running it between my wireless laptop and my openbsd gateway.
> > :>http://openvpn.net/
> > :
> > :PopTop is another:
> > :http://www.poptop.org/
> > 
> > poptop uses pptp, which is unacceptable.  pptp is insecure, and breaks 
> > under nat.
> 
> Are there any good ipsec vpn solutions out there for openbsd which are
> likely to be compatible with vpn to other os'es?

in my experience, openbsd's built-in isakmpd and ipsec stack plays nice
with others (racoon, *swan, checkpoint).  many people feel that ipsec is
overly complicated and difficult to deal with.

lots of people like openvpn, and in my experience it also works very
well--it's easy to setup, NAT-friendly, portable.

i would second the notion that PPTP is crap.

-j

--
"Simpson, Homer Simpson, he's the greatest guy in his-tor-y. From
 the town of Springfield, he's about to hit a chestnut tree....D'oh!"
	--The Simpsons

Follow-Ups:
- Re: OpenBSD VPN
  - From: Gaby vanhegan

References:
- OpenBSD VPN
  - From: Mark Maxey
- Re: OpenBSD VPN
  - From: Gaby vanhegan
- Re: OpenBSD VPN
  - From: Shaun Fryer

Prev by Date: Re: Recommendation of ADSL modem
Next by Date: Re: OpenBSD VPN
Previous by thread: Re: OpenBSD VPN
Next by thread: Re: OpenBSD VPN
Index(es):
- Date
- Thread

Visit your host, monkey.org