Re: Non-IPsec VPN products

[Tina Bird <tbird () precision-guesswork com>]

I have been very happy with the V/TCPSecure product line from
InfoExpress (I get no money for endorsing them ;-)).  Their
VPN product is a TCP encapsulator with 3DES encryption.  It is
not based on IPsec -- which is bad if you have to build VPNs
between multiple organizations, but fabulous if you're in an 
environment where there's lots of NAT or other perimeter 
security.

It supports a wide variety of authentication mechanisms, 
employs very granular access control on the server side (config
is text-based and looks a bit like a RADIUS config file, and 
allows management based on username, IP address, protocols, etc).
The client also integrates into a Windows networking environment
very cleanly -- allowing easy access to remote network resources
and other systems.  Server runs on nearly anything (Linux, Solaris,
a couple other UNIXes I'm forgetting at the moment, Windows);
clients are available for Windows, Linux, and Solaris, with
occasionally Macintosh if the market demands.

> And< InfoExpress have added centrally managed PC firewall
support, to help protect the central network from the risks of
piggy back attacks through the VPN.

Take a look at http://www.infoexpress.com.

HTH -- Tina Bird

On Mon, 20 Aug 2001, Patrick Darden wrote:

> Date: Mon, 20 Aug 2001 10:27:56 -0400 (EDT)
> From: Patrick Darden <darden () armc org>
> To: Ng Pheng Siong <ngps () post1 com>
> Cc: firewall-wizards () nfr com
> Subject: Re: [fw-wiz] Non-IPsec VPN products
>
>
> Socks does not do this to my knowledge.  I'm not sure what you are asking
> for, it sounds more like you are asking for protocols than apps.
>
> Other protocols than IPSEC would be 
>
>       PPTP (point to point tunneling protocol)
>       L2F  (layer 2 forwarding)
>       L2TP (layer 2 tunneling protocol)
>
> NT has PPTP built in.
> Win/2K has ipsec and pptp built in.
>
> Lots of Linux and BSD based products, many open source projects out there.
> With a little work you can have a great free solution.
>
> There are many comercial black boxes based off of Linux/BSD and an open
> source product.  Check the Linux Journal and Information Security for ads.
>
>
> --
> --Patrick Darden                Internetworking Manager             
> --                              706.354.3312    darden () armc org
> --                              Athens Regional Medical Center
>
>
> On Sat, 18 Aug 2001, Ng Pheng Siong wrote:
>
> > Hi,
> >
> > I'm scouting around for non-IPsec VPN products, commercial or freeware.
> >
> > I know of just one: Aventail, which is SOCKS-based. Surely there will be
> > others? 
> >
> > TIA. Cheers.
> > -- 
> > Ng Pheng Siong <ngps () post1 com> * http://www.post1.com/home/ngps
> >
> > Quidquid latine dictum sit, altum viditur.
> > _______________________________________________
> > firewall-wizards mailing list
> > firewall-wizards () nfr com
> > http://list.nfr.com/mailman/listinfo/firewall-wizards
>
> _______________________________________________
> firewall-wizards mailing list
> firewall-wizards () nfr com
> http://list.nfr.com/mailman/listinfo/firewall-wizards

VPN:  http://kubarb.phsx.ukans.edu/~tbird/vpn.html
life: http://kubarb.phsx.ukans.edu/~tbird
work: http://www.counterpane.com

_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards