[KLUG Hardware] Re: VPN, was: Difference between Gold & Silver

[randall perry]

At 12:29 PM 4/15/2003, you wrote:
>CIPE?  Not yet, but I'll probably check into it too.  My main concern 
>is getting to work as a server since it's not supported by my firewall
>(Devil Linux).
I was going to use CIPE for a VPN tunnel, because it runs over UDP and is fast (It didn't matter that it worked with Windows and Linux boxes).  I ended up just setting up 2 dedicated IPCop boxes and run a permanent compressed IPSec tunnel (blowfish).  Works great!

PPTP is garbage.  I am ashamed to say I have set that up for dial-up ISP VPN clients (salesmen).  It is easy to setup and yet very INSECURE. Better off with L2TP for Windows or using kerberos for authentication and IPSec for tunnel.



*:-.,_,.-:*'``'*:-.,_,.-:*'``'*:-.,_,.-:*'``'*:-.,_,.-:*'``'*:-.
      Randall Perry
          Senior Consultant/Instructor
      ------------------------------------------------
      Domain Logic
          http://www.domain-logic.com
          1925 Park West Drive
          Goshen, IN 46526
*:-.,_,.-:*'``'*:-.,_,.-:*'``'*:-.,_,.-:*'``'*:-.,_,.-:*'``'*:-.