Page 2 of 2 FirstFirst 12
Results 21 to 22 of 22

Thread: Encapsulation in VPN

  1. #21
    David Brown
    Guest

    Re: Encapsulation in VPN

    Stefan Monnier wrote:
    >> IPSEC is very widely used for infrastructure VPNs and is not
    >> proprietary. Cisco interoperates with Checkpoint interoperates with
    >> Draytek interoperates with OpenVPN ....... Never found a problem in
    >> dozens of cases.

    >
    > In which sense do they "interoperate"?
    >
    >> OpenVPN is proprietary and will not work with a Draytek router.

    >
    > In which sense is OpenVPN proprietary?
    >


    I think the poster means that the protocol is not an official standard
    held by an independent body. That's true, even though it is built
    around existing standards and is freely available.

    >> If you do not, setting up and maintaining this simply to support a few
    >> dialup VPN clients is a big ask. Making a few changes to your firewall for
    >> GRE is pretty minor by comparison.

    >
    > I went to the trouble of setting up a personal OpenVPN server (and
    > corresponding clients) specifically because of the endless problems
    > I had with firewalls when using PPTP (and I don't know about other
    > people, but I can't make any change to most of the firewalls to which
    > I'm exposed; and even when I could I still had problems when several
    > machines within the same NAT subnet tried to use the same VPN).
    >


    I have no doubt that OpenVPN is much easier to configure and work with
    both for the server and clients. Most of the servers I have configured
    have been on small, cheap LinkSys routers using OpenWRT, with multiple
    OpenVPN configurations - an independent OpenVPN network for each network
    port on the device. Different clients have OpenVPN connections to
    different servers, and can easily connect to or disconnect from the
    networks as they require. Each server can have multiple clients for the
    different VPN networks as needed. Each client can be connected to
    multiple servers. And both the servers and clients are typically behind
    at a NAT router. This kind of flexibility is simply impossible with
    other VPN solutions.

  2. #22
    Stefan Monnier
    Guest

    Re: Encapsulation in VPN

    >>> IPSEC is very widely used for infrastructure VPNs and is not
    >>> proprietary. Cisco interoperates with Checkpoint interoperates with
    >>> Draytek interoperates with OpenVPN ....... Never found a problem in
    >>> dozens of cases.

    >> In which sense do they "interoperate"?

    > Which 'they' are you referring to?


    Cisco, Checkpoint, Draytek, and OpenVPN. Or to put the question more
    precisely and avoid potential misunderstandings on my part:

    What is meant by "interoperates" in "Cisco interoperates with
    Checkpoint interoperates with Draytek interoperates with OpenVPN"?

    In my world, "interoperate" in this context would mean something like "a
    client from one company can connect to a server of the other company".
    But clearly, that's not what is meant above since only an OpenVPN client
    can connect to an OpenVPN server (don't know about the other ones).


    Stefan

Similar Threads

  1. Replies: 1
    Last Post: 11-06-09, 11:26 AM
  2. Why is VPN slow to some sites, but not all?
    By greenyoda2000 in forum Broadband Tweaks Help
    Replies: 7
    Last Post: 10-06-09, 03:48 AM
  3. Help VPN connection to Linksys RV082 VPN Router
    By alexid in forum Networking Forum
    Replies: 2
    Last Post: 06-20-08, 08:31 AM
  4. Adding VPN Router to Existing Network
    By sheider in forum Wireless Networks & Routers
    Replies: 5
    Last Post: 01-17-07, 08:28 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •