[Openswan Users] openswan instead of poptop

Ryan Verner xfesty at computeraddictions.com.au
Wed Sep 1 21:28:01 CEST 2004

On Wed, 1 Sep 2004 17:50:44 -0700 (PDT), John H. wrote
> Well, dan said I would have to possibly use a radius
> server if I wanted the windows clients to use their
> built in vpn clients?
> So what you are saying is if they use l2tp/ipsec, they
> won't even be using ppp?  As long as they can use
> built in winxp/win2k software, I can do the config
> myself.  I do like, though, for my clients(who are

I'm still using poptop on wireless links myself; ipsec as a protocol is far
superior, and I rather like openswan, but the Win2K/XP IPSec built-in client
*sucks*.  It doesn't appear to have any decent packet loss handling; in fact,
as soon as I get any, the connection drops completely.  I've seen cases where
the machine had to be rebooted until the client would connect again.

Fingers crossed that possibly XP SP2 fixed this, but I doubt it.  It's been
some months since I last tried.

Anybody know of any decent third party Win32 IPSec clients that either are
cheaply priced that perform well on less-then-optimal links (i.e. the error
handling doesn't suck)?

> happy with pptp/poptop, but would like added
> security), the ease like the webmin interface offers,
> which lets you easily add new accounts.

You do, of course, realise that adding new users to pptpd is easy as adding a
new username/password (+ip) combo to your chap-secrets file, right? :-)


Qbalt Project (http://www.qbalt.com/)

More information about the Users mailing list