IWETHEY v. 0.3.0 | TODO
1,095 registered users | 0 active users | 0 LpH | Statistics
Login | Create New User
IWETHEY Banner

Welcome to IWETHEY!

IWETHEY Home / IWETHEY Board / Networking Forum / Good VPN client for Linux?
Post #105,345
by drewk
Picture of drewk
6/9/03 7:50:50 AM
Reply
New Good VPN client for Linux?
I've got a cow-orker asking my opinion on [link|http://www.freeswan.org|http://www.freeswan.org] as a VPN client for Linux. I've never used it or any other, so I don't have one. Any recommendations?
===

Implicitly condoning stupidity since 2001.
Post #105,356
by folkert
Picture of folkert
6/9/03 9:03:19 AM
Reply
New Good, Bad and the Ugly
FreeSwan works just fine. Actually works very well. Works with many different configs.

FreeSwan also has the tendancy to be Extremely picky about things. Everything *MAY* look 1000000% okay on both ends, but there is that extra whitespace/unprintable char at he end of something... oops. (This might have been fixed recently, seen alot of work about this anomaly)

FreeSwan tends to be very Kernel Specific... ie: The same kernel needed to be used at both ends (literally that same one from the same package (compile... etc). More recently this has been resolved partly(mostly) (as well there has been a lot of work done on this). Also, it doesn't like NAT. It can work with it, but really doesn't like NAT. behind the VPN link sure no problem... but It likes to be a real host on the Internet and full IP DNS name control by you as well.

Other than that, if you can work through it's various problems (yes quite a few I know bleh) it really seems to have alot of functionality and it *DOES* work.
[link|mailto:greg@gregfolkert.net|greg] - IT Grand-Master for Anti-President
[link|http://www.iwethey.org/ed_curry/|REMEMBER ED CURRY!]

THEY ARE WATCHING YOU.
The time has come for you to take the last step.
You must love THEM.
It is not enough to obey THEM.
You must love THEM.

PEACE BEGETS WAR, SLAVERY IS FREEDOM, STRENGTH IN IGNORANCE.
Post #105,360
by drewk
Picture of drewk
6/9/03 9:49:07 AM
Reply
New More details
Should have mentioned the first time, this is for the cow-orker to connect with his Linux box to a W2K-based VPN. Since you (and most of the docs I saw) are assuming the same system on both ends of the connection, what other details would I need to know? There seems to be some distinction between whether it's W2K or the Cisco hardware in between that makes the difference.
===

Implicitly condoning stupidity since 2001.
Post #114,338
by scoenye
8/19/03 2:06:57 PM
Reply
New Check the interoperability docs
There is an interoperability doc for each version of FreeS/WAN. They can be found through [link|http://www.freeswan.org/doc.html|http://www.freeswan.org/doc.html]
     Good VPN client for Linux? - (drewk) - (3) - June 9, 2003, 07:50:50 AM EDT
         Good, Bad and the Ugly - (folkert) - (2) - June 9, 2003, 09:03:19 AM EDT
             More details - (drewk) - (1) - June 9, 2003, 09:49:07 AM EDT
                 Check the interoperability docs - (scoenye) - Aug. 19, 2003, 02:06:57 PM EDT

For what it's worth, gangrene makes one testy.
154 ms