From: Heiko Z. <he...@zu...> - 2005-05-11 15:01:48
|
>> Thank you all for your advice. I cannot use IPSec >> because I already used it on another interface [on the same DL box] to >> encrypt wireless traffic. Meanwhile I tried the simplest scenario with >> Openvpn >> [with static key] and it seemed OK and straight >> forward. Now I'm working on using RSA with that. My major concern is >> security. I only hope that openvpn solution is secure enough >> [paranoia!!! ;)]. >> > > I read a review of a bunch of Linux VPN packages awhile back, and they > were very critical about the security of VPN's like CIPE and some others. > (Redhat was using CIPE as their default VPN at the time) > > > The only bad thing they said about OpenVPN is that their protocol is not > the most efficient for a VPN. They didn't say anything bad about OpenVPN's > security. > > After reading that article, and I quickly switched from CIPE to OpenVPN > and I've been very happy with OpenVPN ever since. > >> Bruce mentioned something about having one server >> running for each client [applied to openvpn version in DL]. I think I >> should be OK if I run it as a daemon or > > Yes, it's a daemon. I have a couple of them running on one DL box. > > >> at least that's what man page says. But as he mentioned that would be >> great if we can have openvpn version 2 in new release of DL. > > Hopefully soon! :-) Since we have some issues which delay the release at the moment, I uploaded a pre-release to our FTP server: ftp://ftp.devil-linux.org/pub/devel/testing/ Please use this version only if you have to. -- Regards Heiko Zuerker http://www.devil-linux.org |