Thanks! That clears it up. I think those articles are talking about other commercial products. I appreciate it!! Rick.
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Martin Hejl Sent: Tuesday, November 30, 2004 3:59 PM To: Tibbs, Richard Cc: [EMAIL PROTECTED] Subject: Re: [leaf-user] OPenvpn.lrp newbie Hi Richard, > I hate to tack this on, but I am confused by the following link: > http://slackerbit.ch/archives/2002/12/11/securing_wifi_with_openvpn.html > Which generates an openvpn tunnel between a desktop and wireless laptop. > > > In articles I have read that the beauty of TLS/SSL is that you don't > need any particular application on a host. (For example > Higgins, K. J., "Reconstructing the VPN," Network Computing, Vol. 15, > No. 15, August 2004. > Conry-Murray, A., "SSL VPNs: Remote Access for the Masses," Network > Magazine, Vol. 8, No. 10, October 2003.) > > In link above there is an openvpn config running on both machines. Are > the articles clueless or is there another way to do openvpn at a > firewall by pointing a browser at port 5000? Well, the following article gives a nice overview over OpenVPN: http://www.sans.org/rr/whitepapers/vpns/1459.php and it also addresses the issue of "other SSL VPNs", (which sound like what you are referring to), namely the kind that will only require a web browser on the client (to me, it seems the author doesn't think too highly of those, but I let you decide on the credibility of the author and validity of his conclusions). This is _not_ what OpenVPN does (nor does it try to). OpenVPN uses the OpenSSL libraries for the encyption and that's it (that the same libraries can also be used to create secure HTTP connections is not relevant to what OpenVPN does). A web-browser does not play any role in the construction of the tunnel with OpenVPN. So, in short, OpenVPN requires to be installed on both ends of the tunnel. If you've read something else, they must have been discussing other products. I hope that helps. Martin ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://productguide.itmanagersjournal.com/ ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://productguide.itmanagersjournal.com/ ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
