Security Basics mailing list archives

AW: any VPN program at linux?

From: Fuchs Bernhard <Bernhard.Fuchs () itellium com>
Date: Mon, 25 Nov 2002 09:32:15 +0100

(1) ssh tunnels, in particular tunneling PPP over ssh
 (+) easy to setup
 (-) only works linux-linux
 (-) tunnels everything over tcp.


this is not right  FSecure is for Window$ Client/Server
there is also a free version.... OpenSSH for Window$


Mit freundlichen Grüßen/ sincerely yours


Bernhard Fuchs 
Junior System-Engineer 
IT-Infrastruktur/IT-Sicherheit

ITELLIUM 
Systems & Services GmbH 
Fürther Straße 205 
90429 Nürnberg 

Tel.:   +49-911-14-27321 
Fax:    +49-911-14-22016 
mailto:bernhard.fuchs () itellium com 
http://www.itellium.com

This email is confidential. If you are not the intended recipient, you must
not disclose or use the information contained in it. If you have received
this mail in error, please tell us immediately by return email and delete
the document. E-mails to and from the company are monitored for operational
reasons and in accordance with lawful business practices. The contents of
this email are those of the individual and do not necessarily represent the
views of the company. The company accepts no responsibility once an e-mail
and any attachments is sent. 



-----Ursprüngliche Nachricht-----
Von: Johannes Ullrich [mailto:jullrich () euclidian com]
Gesendet: Freitag, 22. November 2002 02:56
An: SB CH
Cc: security-basics () securityfocus com
Betreff: Re: any VPN program at linux?

I would like to use VPN at linux?
Do you know any recommendable program?


short answer: plenty... 

(1) ssh tunnels, in particular tunneling PPP over ssh
  (+) easy to setup
  (-) only works linux-linux
  (-) tunnels everything over tcp.

(2) CIPE
  (+) comes with redhat.
  (+) a bit better performances (UDP, not TCP like ssh)
  (o) harder to setup then ssh, but not as hard as IPSEC ;-)
  (-) no Windows support I know off.

(3) FreeSwan (IPSEC)
  (+) full IPSec implementation. Very interoperaple.
  (+) very flexible
  (-) pain to setup
  (-) problems with NAT

(4) PPTP (Microsoft VPN)
  (+) works great with all versions of Windows.
  (+) not hard to setup.
  (-) frequently considered less secure then alternatives.
  (-) not as flexible and not as good interoperable as IPSec.
      (but works great as long as you deal with Windows/Linux machines)

There is a pretty good New Riders book: Building Linux VPNs. It walks
you through all these systems (and probably a couple more I forgot) 
  

-- 
--------------------------------------------------------------------
jullrich () euclidian com             Collaborative Intrusion Detection
                                         join http://www.dshield.org

Current thread:

AW: any VPN program at linux? Fuchs Bernhard (Nov 25)
- Re: any VPN program at linux? Jose Celestino (Nov 27)
- <Possible follow-ups>
- AW: any VPN program at linux? Fuchs Bernhard (Nov 26)
  - Re: AW: any VPN program at linux? Johannes Ullrich (Nov 25)