Best VPN server to use on Fedora
Mike McGrath
mmcgrath at iesabroad.org
Thu Oct 27 14:28:06 UTC 2005
> -----Original Message-----
> From: fedora-list-bounces at redhat.com
> [mailto:fedora-list-bounces at redhat.com] On Behalf Of Rick Lim
> Sent: Thursday, October 27, 2005 7:39 AM
> To: 'For users of Fedora Core releases'
> Subject: RE: Best VPN server to use on Fedora
>
>
>
> -----Original Message-----
> From: fedora-list-bounces at redhat.com
> [mailto:fedora-list-bounces at redhat.com]
> On Behalf Of Leonard Isham
> Sent: Thursday, October 27, 2005 4:50 AM
> To: For users of Fedora Core releases
> Subject: Re: Best VPN server to use on Fedora
>
> On 10/27/05, Rick Lim <ricklim at telus.net> wrote:
> >
> >
> > -----Original Message-----
> > From: fedora-list-bounces at redhat.com
> [mailto:fedora-list-bounces at redhat.com]
> > On Behalf Of Kenneth Porter
> > Sent: Tuesday, October 25, 2005 12:51 AM
> > To: For users of Fedora Core releases
> > Subject: Re: Best VPN server to use on Fedora
> >
> > --On Monday, October 24, 2005 9:53 PM -0400 Leonard Isham
> > <leonard.isham at gmail.com> wrote:
> >
> > > OpenVPN gets my vote. www.openvpn.net
> >
> > Agreed. It runs over SSL instead of IPSec, almost completely in
> > userspace, which I find is easier to set up. The stock
> Fedora kernel
> > includes the required kernel tun/tap device, so you don't need a
> > custom kernel, nor special router support. If you can open a ssh or
> > https connection to your VPN server, then you can get to it with
> > OpenVPN, assuming the port is
> open.
> > ISP's don't see it as "VPN". (Some forbid VPN connections.)
> >
> > Hi Kenneth,
> >
> > I have looked at OpenVPN, from what I can figure out....
> with a Linux
> > VPN server and windows xp clients you would have to install
> OpenVPN on
> > the windows machine.
> >
> > I don't want to have to install OpenVPN on each windows machine,
> > windows
> xp
> > already has a client built in, I would like a Linux server
> that would
> > work with the built in windows client, am I wrong in assuming that
> > OpenVPN on
> the
> > Linux box will not work with the XP client?
> >
>
> While I don't know your situation...
>
> The MIcrosoft included Windows VPN clients are insecure.
> Which has been proven multiple times. I would only impliment
> a Windows solution under protest. In fact I have migrated
> people to OpenVPN.
>
> I find the installation of the windows client trivial and you
> end up with a reliable secure solution.
>
> --
> Leonard Isham, CISSP
> Ostendo non ostento.
>
> Not trying to doubt your word, but can you point me towards
> articles to prove the built in VPN to be less than desirable?
>
> I have to be able to prove my case to my users that the
> installation of "another" client is required......
>
> Thanks.
>
What your interested in is poptop. Their website has a better
description as to why not to use it:
http://poptop.sourceforge.net/dox/protocol-security.phtml
-Mike
More information about the fedora-list
mailing list