[linux] aka VPN
radovan na podbreziny.sk
radovan na podbreziny.sk
Pondělí Říjen 15 21:32:12 CEST 2007
openvpn je idealne riesenie, hlavne co sa tyka road warriorov. vyuzivam uz
viac ako rok a s openvpn mam len dobre skusenosti. vystaci si s jednym
portom, bezproblemovo prechadza cez nat. konfiguracia trva cca 15 minut.
pre windowsoveho ako aj pre mac klienta existuju frontendy.
uroven zabezpecenia je myslim dostacujuca. openvpn podporuje klientske a
servrove certifikaty, hmac. viac tu: http://openvpn.net/security.html
On Mon, 15 Oct 2007 15:47:32 +0100, Martin Simovic
<msimovic at concurrent-thinking.com> wrote:
> Dobry den,
>
> hladam riesenie pre VPN - nasledovny setup
>
> LAN 1--- GW1 --- internet --- GW2 ---LAN2
>
> obe gateways su debian 4.0, iptables, NAT.
>
> potrebujem transparentny pristup LAN1 <---> LAN2
>
> apt-cache search ipsec na debian systeme
>
> ipsec-tools - IPsec tools for Linux
> racoon - IPsec IKE keying daemon
> grml-vpn - program to establish encrypted communication channels in a
> network
> ike-scan - discover and fingerprint IKE hosts (IPsec VPN Servers)
> isakmpd - The Internet Key Exchange protocol openbsd implementation
> kvpnc - vpn clients frontend for KDE
> linux-patch-openswan - IPSEC Linux kernel support for Openswan
> openswan - IPSEC utilities for Openswan
> openswan-modules-source - IPSEC kernel modules source for Openswan
> pipsecd - IPsec tunnel implementation
> strongswan - IPSec utilities for strongSwan
>
> ktore riesenie je najvhodnejsie? ma s tym niekto skusenost.
>
> konkretne: je tu openswan (depends on ipsec-tools)
> ipsec-tools + racoon
> openvpn (SSL vpn) vyhody/nevyhody oproti IPSec
>
> predpoklady co to ma splnat (podla priority)
>
> bezpecnost
> podpora road-wariors (v buducnosti)
> podpora winXP vpn klienta
>
> dakujem,
>
> martin.
>
>
> _______________________________________________
> https://lists.linux.sk/mailman/listinfo/linux
> Meta FAQ: http://www.sklug.sk/lists/linux/metafaq.html
Další informace o konferenci linux