[ale] VPN'ing

Geoffrey esoteric at 3times25.net
Wed Oct 23 16:29:29 EDT 2002 

Jonathan Glass wrote:
> For whatever reason (lack of time, death of project, etc) I could not figure out
>  what client to use on the Windows machines to connect to a freeswan server.  I
> setup the PPTP box with FREESWAN on it...but got lost on the client end.
> 
> What do you use?

I didn't say I'd done it, just that it was a better solution. :)  As I 
recall, the freeswan site lists windows clients that work with it 
though.  I would expect that you could have linux<->linux freeswan 
solution and then have the linux box nat the windows boxes.  I've done 
that with a client provided by the corporate folks, but don't recall the 
name or vendor, since I, fortunately don't use it any longer.

> 
> THanks
> 
> Jonathan
> Quoting Geoffrey <esoteric at 3times25.net>:
> 
> 
>>pptp is known to be less secure then ipsec.  Further, as other's have 
>>noted, why go with a substandard closed source solution when you have 
>>freeswan???
>>
>>Robert L. Harris wrote:
>>
>>>Actually pptp works well.  Create a tunnel on your firewall and set
>>
>>a
>>
>>>route, just make sure the box is very secure.  I did this and it
>>
>>worked
>>
>>>very cleanly.
>>>
>>>
>>>Thus spake John Wells (jb at sourceillustrated.com):
>>>
>>>
>>>
>>>>Date: Wed, 23 Oct 2002 10:38:24 -0400 (EDT)
>>>>From: "John Wells" <jb at sourceillustrated.com>
>>>>To: <jonathan.glass at ibb.gatech.edu>
>>>>Cc: <ale at ale.org>
>>>>X-Mailer: SquirrelMail (version 1.2.8)
>>>>Subject: Re: [ale] VPN'ing
>>>>
>>>>Ick.  If you can stay away from pptp, do so.  Besides, something about
>>>
>>a
>>
>>>>using something designed by Microsoft for security on a Linux box
>>>
>>just
>>
>>>>seems wrong.
>>>>
>>>>John
>>>>
>>>>Jonathan Glass said:
>>>>
>>>>
>>>>>Quoting Matthew Brown <matthew.brown at cordata.net>:
>>>>>
>>>>>
>>>>>
>>>>>>Has anyone tried using Linux as a VPN server for Windows clients
>>>>>
>>to
>>
>>>>>>connect through?
>>>>>>
>>>>>>Best regards,
>>>>>>Matthew Brown, President
>>>>>>CorData, Inc.
>>>>>>O: (770) 795-0089
>>>>>>F: (404) 806-4855
>>>>>>E: matthew.brown at cordata.net
>>>>>>
>>>>>>
>>>>>
>>>>>I did this using pptp on a RedHat 7.1 box (stock).  I got
>>>>
>>everything
>>
>>>>>setup for testing (no encryption), and everything worked fine.  Then
>>>>
>>the
>>
>>>>>project was dropped, so I didn't get to go beyond that.  Total time
>>>>
>>to
>>
>>>>>setup the server (rpm packages) was one day...mostly due to a lack
>>>>
>>of
>>
>>>>>knowledge about the whole process.
>>>>>
>>>>>Jonathan Glass
>>>>>Systems Support Specialist II
>>>>>IBB/BME
>>>>>V: 404-385-0127
>>>>>F: 404-892-2291
>>>>>
>>>>>---
>>>>>This message has been sent through the ALE general discussion list.
>>>>
>>See
>>
>>>>>http://www.ale.org/mailing-lists.shtml for more info. Problems should
>>>>
>>be
>>
>>>>>sent to listmaster at ale dot org.
>>>>
>>>>
>>>>
>>>>
>>>>---
>>>>This message has been sent through the ALE general discussion list.
>>>>See http://www.ale.org/mailing-lists.shtml for more info. Problems
>>>
>>should be 
>>
>>>>sent to listmaster at ale dot org.
>>>
>>>
>>>
>>>
>>>:wq!
>>>
>>
>>---------------------------------------------------------------------------
>>
>>>Robert L. Harris                
>>>                               
>>>DISCLAIMER:
>>>      These are MY OPINIONS ALONE.  I speak for no-one else.
>>>FYI:
>>> perl -e 'print
>>
>>$i=pack(c5,(41*2),sqrt(7056),(unpack(c,H)-2),oct(115),10);'
>>
>>>
>>>---
>>>This message has been sent through the ALE general discussion list.
>>>See http://www.ale.org/mailing-lists.shtml for more info. Problems
>>
>>should be 
>>
>>>sent to listmaster at ale dot org.
>>>
>>>
>>
>>-- 
>>Until later: Geoffrey		esoteric at 3times25.net
>>
>>I didn't have to buy my radio from a specific company to listen
>>to FM, why doesn't that apply to the Internet (anymore...)?
>>
>>
>>---
>>This message has been sent through the ALE general discussion list.
>>See http://www.ale.org/mailing-lists.shtml for more info. Problems
>>should be 
>>sent to listmaster at ale dot org.
>>
> 
> 
> 
> 
> Jonathan Glass
> Systems Support Specialist II
> IBB/BME
> V: 404-385-0127
> F: 404-892-2291
> 
> ---
> This message has been sent through the ALE general discussion list.
> See http://www.ale.org/mailing-lists.shtml for more info. Problems should be 
> sent to listmaster at ale dot org.
> 
> 

-- 
Until later: Geoffrey		esoteric at 3times25.net

I didn't have to buy my radio from a specific company to listen
to FM, why doesn't that apply to the Internet (anymore...)?


---
This message has been sent through the ALE general discussion list.
See http://www.ale.org/mailing-lists.shtml for more info. Problems should be 
sent to listmaster at ale dot org.

More information about the Ale mailing list