[wplug] Question for VPN setup

Mike Kuentz (2) JunkEmail at rapidigm.com
Wed Dec 10 15:31:11 EST 2003


http://www.freeswan.org for the server
http://www.freeswan.org/freeswan_snaps/CURRENT-SNAP/doc/interop.html#mic
rosoft
for the client
Pre-shared key would probably be a lot easier that x.509, but is not as
secure.  You could use pre-shared keys for initial testing, and then
change over to x.509

Mike


> -----Original Message-----
> From: wplug-admin at wplug.org [mailto:wplug-admin at wplug.org] On 
> Behalf Of Benjamin Slavin
> Sent: Wednesday, December 10, 2003 3:17 PM
> To: wplug at wplug.org
> Subject: [wplug] Question for VPN setup
> 
> 
> I recently had a client ask about the setup of a VPN to allow remote 
> users to login to a corporate network while they are out of town. The 
> requirements are that the end users will be running Windows 
> XP (or 2000, 
> in a few cases) and that they have to be able to connect over 
> the internet.
> 
> I've done a good bit of searching around, and find myself 
> more confused 
> than informed.
> 
> Can anyone suggest a GOOD [secure] way to implement the VPN 
> described above?
> 
> I'd like to make use of an OpenBSD server already acting as the 
> firewall, but the documentation for IPSec is poor (and has 
> actually been 
> removed from the FAQ due to lack of maintenance).
> 
>  From what I've read, I assume that IPSEC with x509 keys is 
> the way to 
> go, but I'm open to any and all suggestions.
> 
> Thanks,
>   --Ben
> 
> _______________________________________________
> wplug mailing list
> wplug at wplug.org
> http://www.wplug.org/mailman/listinfo/wplug
> 



More information about the wplug mailing list