[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

Re: [Openvpn-users] Re: Open VPN is compactible with VPN-1 SecureClient the Checkpoint

  • Subject: Re: [Openvpn-users] Re: Open VPN is compactible with VPN-1 SecureClient the Checkpoint
  • From: Mathias Sundman <mathias@xxxxxxxxxx>
  • Date: Sun, 3 Oct 2004 10:07:14 +0200 (CEST)
On Sun, 3 Oct 2004, Jesus Delgado wrote:

Ed Ravin <eravin <at> panix.com> writes:

Any other SW OpenSource the client VPN what permit connect at Checkpoint VPN?

Not that I'm aware of. SecureClient uses IPSEC in the bottom but uses a bunch of other protocols to download topology and desktop policy. Perhaps it's possible to configure VPN-1 to accept pure IPSEC, but I don't think so.


 Iam use Linux, with VMware boot WinXP and use SecureClient for connect at VPN
the my work, both not like use WinXP.

  Iam like use my linux and connect with any client the VPN OpenSource, both
not have expirence with other client compactibles.

  I can replace the server Checkpoint VPN  ( server and clients ) with OpenVPN,
is viable?, maybe can use clients for WinXP, Linux and other OS?

If you can just convince the management of your company, you can replace the checkpoint VPN with OpenVPN. In fact, that's exactly what I'm in process of doing where I work.

We chosed CP VPN-1 a couple of years ago because it was one of the first supporting ipsec over UDP to overcome nat traversal problems. After this NAT-T for ipsec has become more or less of a standard (is it still just a draft?).

And of cource, then came OpenVPN! I'm so satisfied with OpenVPN that I've throwed all ipsec roadwarrior implementations out, and the checkpoint is now going the same way!


  Any idea, is it posible?, is technology OpenVPN for this issue, maybe more
open, more standard, more secure?


OpenVPN is definitly more open!

Maybe not more standard. VPN-1 is based on the ipsec standard but adds on proprietary protocolls. OpenVPN is based on standards, but the multiplexing of these protocols over a UDP/TCP port is a OpenVPN unique protocol. It's free for others to implement software using the same protocol (I assume), but today only OpenVPN exists using this protocol.

But as OpenVPN is free to use and avalible for all the major platforms it's not a problem.

More secure can also be discussed. Both uses strong cryptological technology and if configured correctly they are secure. But I'd say OpenVPN has a better chans of beeing for secure anyway because it's kept simple and not OVERBLOATED like the checkpoint solution!

--
_____________________________________________________________
Mathias Sundman                  (^)   ASCII Ribbon Campaign
OpenVPN GUI for Windows           X    NO HTML/RTF in e-mail
http://www.nilings.se/openvpn    / \   NO Word docs in e-mail

____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users