[CentOS] Choosing VPN Server

Ross S. W. Walker rwalker at medallion.com
Thu Sep 20 16:07:24 UTC 2007 

Wei Yu wrote:
> 
> Does openvpn support IPsec well?
> I want the server to work cooperation with a Microsoft ISA 
> Server inside the intranet with site-to-site vpn mode.
> For that reason I want the server has good compatibility with windows.

You don't need IPSec for Windows ISA server compatibility, just add a
server publishing rule that forwards your OpenVPN port of choice to
the internal OpenVPN server, whether it is on CentOS or Windows doesn't
matter.

If you use a different SSL port then 443, which you will need to do if
you also publish an https: site off of ISA, then you need to run a
script that adds that port # to the list of authorized SSL ports on
the ISA server.

Also when deploying the OpenVPN client to your Windows laptops look
at using Group Policy so they are all identically installed and
configured.

-Ross


> On 9/19/07, Alain Spineux <aspineux at gmail.com> wrote: 
> 
> 	OpenVPN works with windows too (client or server).
> 	The same configuration files works on both OS.
> 	Very easy to enable multiple VPN connection at the same time. 
> 	
> 	
> 	
> 	On 9/19/07, Brian Mathis <brian.mathis at gmail.com> wrote:
> 	> On 9/19/07, Wei Yu <zig.wei at gmail.com> wrote: 
> 	> > Hi,
> 	> >
> 	> > I am facing a task of choosing vpn server. I do not 
> know which is better.
> 	> > The one distributed with CentOS4.5 only supports 
> pppd (or maybe pptp but I
> 	> > cannot find it). 
> 	> > If I want to use PPTP or L2TP, which one should I 
> choose? OpenVPN? Poptop?
> 	> >
> 	> > Thanks.
> 	> >
> 	>
> 	> I suggest OpenVPN.  It's modern, very secure, and had 
> a wide range of 
> 	> options and usage scenarios.  PPTP / L2TP is a pain 
> to get working,
> 	> and it has some security issues.
> 	> _______________________________________________
> 	> CentOS mailing list
> 	> CentOS at centos.org <mailto:CentOS at centos.org> 
> 	> http://lists.centos.org/mailman/listinfo/centos
> 	>
> 	
> 	
> 	--
> 	Alain Spineux
> 	aspineux gmail com
> 	May the sources be with you 
> 	_______________________________________________
> 	CentOS mailing list
> 	CentOS at centos.org
> 	http://lists.centos.org/mailman/listinfo/centos 
> 	
> 
> 
> 
> 
> -- 
> Zijing 15# 1404B Tsinghua Univ.
> +86 -10 -51537235
> Zig 
> 

______________________________________________________________________
This e-mail, and any attachments thereto, is intended only for use by
the addressee(s) named herein and may contain legally privileged
and/or confidential information. If you are not the intended recipient
of this e-mail, you are hereby notified that any dissemination,
distribution or copying of this e-mail, and any attachments thereto,
is strictly prohibited. If you have received this e-mail in error,
please immediately notify the sender and permanently delete the
original and any copy or printout thereof.

More information about the CentOS mailing list