I use the community version of Vyatta across three sites, and it's been really stable. We have static VPNs between the three sites, and mobile users on two of those. Failover links are supported (and work, I've used 'em).
We use the native VPN clients on Windows and Mac and have it authenticating via radius to AD. That being said, I wish it had a few more security features like better IPS - they had snort, but removed it, and some of the NGFW stuff, and a socks proxy would be nice as well. It does seem the small-medium business with security needs is very poorly served by vendors. Bruce Schneier quotes Mark Rothman (http://www.schneier.com/blog/archives/2013/02/all_those_compa.html) "Back when I was on the vendor side, I'd joke about how 800 security companies chased 1,000 customers -- meaning most of the effort was focus on the 1,000 largest customers in the world. But I wasn't joking. Every VP of sales talks about how it takes the same amount of work to sell to a Fortune-class enterprise as it does to sell into the midmarket. They aren't wrong, and it leaves a huge gap in the applicable solutions for the midmarket." Actually, I'd like to start a discussion about that. Maybe I'll open another thread. d. On Mar 18, 2013, at 10:49, Morgan Blackthorne <[email protected]> wrote: > We have around 40 or so users (looking to expand to more but not above 100 > any time soon). Right now we've got a Netgear UCS device which we got because > we wanted something with integrated IPSec VPN. Except that Netgear's > implementation isn't exactly standard and you can't use it with the native > OSX/Windows clients, you have to use Netgear's client (or the company they > bought it from), which bypasses the original goal of being able to set it up > natively.
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Discuss mailing list [email protected] https://lists.lopsa.org/cgi-bin/mailman/listinfo/discuss This list provided by the League of Professional System Administrators http://lopsa.org/
