[Openswan Users] openswan instead of poptop
i4 Dan Scannell
daniels at i4technologies.net
Wed Sep 1 23:12:41 CEST 2004
John,
What Windows 2000 offers you is a half baked VPN client solution, even with
the high encryption pack. The PPTP guide you included in your Email
describes a very unsecure solution, a good number of technical articles have
described why this is so. However, the XP VPN client goes one step further
and offers an MS / "old Safenet client lite" version giving IPSEC/L2TP
combo.
So your two choices would be;
1. Install r2-l2tp/radius on a separate server to process the l2tp packets
once openswan has striped the IPSEC packet.
2. Install a third party like Safenet or iVPN Software. Perhaps take a look
at Nate's excellent IPSEC setup guide.
http://www.natecarlson.com/linux/ipsec-x509.php
BTW, you taken a look at IPCOP v1.4, its still Beta/RC but highly stable. A
good little box, highly recommended.
Paul : lol ! pay peanuts get Monkeys I guess.
Dan
----- Original Message -----
From: "John H." <mistamaila at yahoo.com>
To: <users at openswan.org>
Sent: Wednesday, September 01, 2004 9:52 PM
Subject: Re: [Openswan Users] openswan instead of poptop
>
> well, for instance...
>
> http://poptop.sourceforge.net/dox/pptp_win2k/
>
> I can use this config for win2k/winxp to connect to
> poptop/pptp server. Just looking to do something as
> simple as this. Or would you probably have to end up
> getting third party connecting software, not what's
> built in?
>
> --- i4 Dan Scannell <daniels at i4technologies.net>
> wrote:
>
> > Hi John,
> >
> > 1.Will I be able to connect with standard
> > winxp/win2k software as I can with
> > pptp/poptop?
> >
> > You mean make a connection to an Openswan server
> > using Winxp/Win2k VPN
> > client Software? probably not, you may need an L2TP
> > server (rp-l2tp Linux
> > package or an internal W2K to process the L2TP auth
> > packets) Openswan would
> > probably just process the IPSEC packets.
> >
> > You may want to consider iVPN or Safenet
> > (recommended) as a third party
> > client connect program.
> >
> > See
> > http://wiki.openswan.org/index.php/interoperating
> > for more info.
> >
> > 2.Any webmin modules available?
> >
> > No idea, probably.
> >
> > 3.Will I get same features(can put \\sambaservername
> > in windows explorer
> > after connect)
> >
> > You may need to add sambaservername into the hosts
> > file
> > (c:\windows\system32\drivers\etc\) on your windows
> > workstation as netbios(?)
> > broadcasts will not be heard on your remote Lan.
> > Logging onto a W2K3 server
> > also works very well.
> >
> > HTH
> >
> > Dan
> >
> >
>
>
>
>
> __________________________________
> Do you Yahoo!?
> Y! Messenger - Communicate in real time. Download now.
> http://messenger.yahoo.com
> _______________________________________________
> Users mailing list
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
>
>
More information about the Users
mailing list