Firewall Wizards mailing list archives

RE: Non-IPsec VPN products

From: Crispin Harris <Harris_C () DeMorgan com au>
Date: Wed, 22 Aug 2001 15:40:58 +1000

I would suggest something like the following list:
Commercial:
        Aventail (really an "ExtraNet" product - encrypted SOCKS5 gateway)
        Cisco 3000 (?)
        Nortel Contivity in Legacy mode.

Freeware:
        SSH tunnels
        stunnel
        vpnd     |
        vpntund  | -> go to freshmeat.com & search for VPN!

Just about anything that can encapsulate packets can be turned into a VPN
product/system. It does depend on what functionality you require. i.e. 
do you need 
 - encryption? 
 - do you need key negotiation?
 - do you need "Road-Warrior" capability (unknown end-points)?
Is it:
 - gateway to gateway (i.e. joining networks)
 - host to host
 - host to gateway ?

In fact, the majority of VPN products which were available more that 9
months ago are non-IPSec VPN products.

As a collegue of mine just said: "It's the easiest this to bring up a VPN,
IPSec just made it more difficult!"

Regards,
        Crispin Harris

-----Original Message-----
From: Patrick Darden [mailto:darden () armc org]
Sent: Tuesday, 21 August 2001 00:28
To: Ng Pheng Siong
Cc: firewall-wizards () nfr com
Subject: Re: [fw-wiz] Non-IPsec VPN products



Socks does not do this to my knowledge.  I'm not sure what you are asking
for, it sounds more like you are asking for protocols than apps.

Other protocols than IPSEC would be 

        PPTP (point to point tunneling protocol)
        L2F  (layer 2 forwarding)
        L2TP (layer 2 tunneling protocol)

NT has PPTP built in.
Win/2K has ipsec and pptp built in.

Lots of Linux and BSD based products, many open source projects out there.
With a little work you can have a great free solution.

There are many comercial black boxes based off of Linux/BSD and an open
source product.  Check the Linux Journal and Information Security for ads.


--
--Patrick Darden                Internetworking Manager             
--                              706.354.3312    darden () armc org
--                              Athens Regional Medical Center


On Sat, 18 Aug 2001, Ng Pheng Siong wrote:

Hi,

I'm scouting around for non-IPsec VPN products, commercial or freeware.

I know of just one: Aventail, which is SOCKS-based. Surely there will be
others? 

TIA. Cheers.
-- 
Ng Pheng Siong <ngps () post1 com> * http://www.post1.com/home/ngps

Quidquid latine dictum sit, altum viditur.
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards


_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards

Current thread:

Non-IPsec VPN products Ng Pheng Siong (Aug 20)
- Re: Non-IPsec VPN products Patrick Darden (Aug 20)
  - Re: Non-IPsec VPN products Tina Bird (Aug 22)
- Re: Non-IPsec VPN products Carson Gaspar (Aug 22)
- <Possible follow-ups>
- RE: Non-IPsec VPN products Crispin Harris (Aug 22)
- Non-IPsec VPN products marcvh (Aug 22)
  - Re: Non-IPsec VPN products Joseph S D Yao (Aug 23)
  - Extranet vs. VPN (was: Non-IPsec VPN products) Crispin Cowan (Aug 24)
    - Re: Extranet vs. VPN (was: Non-IPsec VPN products) marcvh (Aug 26)