On Thu, 8 Nov 2001, Ham wrote: > Would a VPN using SSH be a viable system for say a school district?
Probably not. PPP-over-SSH is really a kludge. Its singular advantage is that it uses mature, well-known components (PPP, SSH), and thus avoids the compatibility problems more common with newer solutions. For any kind of pure IP network, IPsec is the way to go. Linux has a pretty nice IPsec implementation called FreeS/WAN (http://www.freeswan.org). It works very well talking to other FreeS/WAN peers, and can generally be made to work with most other IPsec implementations. For non-IP networks (e.g., IPX), running a tunneling protocol over an IPsec VPN appears to be the solution of choice. We have not done this ourselves (yet), as in every case so far it has made more sense to migrate away from legacy protocols instead of trying to support them. <PLUG TYPE=SHAMELESS> Net Technologies has configured IPsec VPNs using Linux and/or Windows for several of our customers. If you need commercial support, please contact [EMAIL PROTECTED], and we can help you out. </PLUG> -- Ben Scott <[EMAIL PROTECTED]> | The opinions expressed in this message are those of the author and do not | | necessarily represent the views or policy of any other person, entity or | | organization. All information is provided without warranty of any kind. | ***************************************************************** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *****************************************************************
