I just wanted to let everyone on the list know that GTA has received approval to export GNAT Box 3.0.2 with our IPSec VPN enabled. We are taking care of a few things (release notes, etc.) and should have it ready for release on 16 Feb 2000.
This version supports DES (56bit) and the variable length encryption algorithms (CAST128, Blowfish, RC5 and Simple) up to 64bits. We will be submitting an export request for a version that support full strength encryption soon, once we figure out the red tape of the new regulations. This initial release only supports manual keying, but an IKE version is in the works right now. This release supports both AH and ESP transformations for the tunnel mode, (the transport mode is not supported). This implementation will allow unregistered networks on both sides of the VPN to communicate transparently with each other, (e.g. 192.158.1.0 <--> 192.168.100.0). However it is not a requirement for each side to be unregistered, IP Pass Through will work also. Another interesting feature is that you can filter on the VPN tunnel. This is done in the IP Pass Through filter section, (since technically the packets fall into this category before and after the VPN tunnel). This means that you are required to have a VPN/IP Pass Through filter to allow outbound traffic on the VPN and receive inbound traffic(this can be a simple allow everyone in and out through the VPN tunnel if you wish). Of course you can apply the standard filter options to the VPN, (source, destination IP and port, Protocol, interface, time of day, day of week) IP address objects can be used here also. Of course since the IPSec tunnel mode will tunnel ANY IP protocol, all sorts of possibilities arise. Such as: AppleTalk, IPX/SPX, DECnet, etc. Also unsupported applications such as NetMeeting will work through the VPN tunnel. When it comes to something like NetMeeting you can even set the ESP encryption mode to Null (basically no encryption, just tunneling) for speed and connect to a remote site (which has a GNAT Box or compatible VPN system). If you are on a support contract or are a registered 3.x user you will be notified about the product availability. Paul ------------------------------------------------------------------------- Paul Emerson Tel: +1.407.380.0220 x106 Global Technology Associates, Inc. Fax: +1.407.380.6080 3505 Lake Lynda Drive Mobile: +1.407.310.8564 Suite 109 Pager: +1.888.440.8232 Orlando, Florida 32817 Email: [EMAIL PROTECTED] USA Web: http://www.gta.com Mobile Email: [EMAIL PROTECTED] -------------------------------------------------------------------------
