[linux] aka VPN

Martin Simovic msimovic na concurrent-thinking.com
Pondělí Říjen 15 16:47:32 CEST 2007


Dobry den,

hladam riesenie pre VPN - nasledovny setup

LAN 1--- GW1 --- internet --- GW2 ---LAN2

obe gateways su debian 4.0, iptables, NAT.

potrebujem transparentny pristup LAN1 <---> LAN2

apt-cache search ipsec na debian systeme

ipsec-tools - IPsec tools for Linux
racoon - IPsec IKE keying daemon
grml-vpn - program to establish encrypted communication channels in a
network
ike-scan - discover and fingerprint IKE hosts (IPsec VPN Servers)
isakmpd - The Internet Key Exchange protocol openbsd implementation
kvpnc - vpn clients frontend for KDE
linux-patch-openswan - IPSEC Linux kernel support for Openswan
openswan - IPSEC utilities for Openswan
openswan-modules-source - IPSEC kernel modules source for Openswan
pipsecd - IPsec tunnel implementation
strongswan - IPSec utilities for strongSwan

ktore riesenie je najvhodnejsie? ma s tym niekto skusenost.

konkretne: je tu openswan (depends on ipsec-tools)
	   ipsec-tools + racoon
	   openvpn (SSL vpn) vyhody/nevyhody oproti IPSec

predpoklady co to ma splnat (podla priority)

bezpecnost
podpora road-wariors (v buducnosti)
podpora winXP vpn klienta

dakujem,

martin.




Další informace o konferenci linux