Hi
I want to implement VPN between 2 servers, May one guide me for select one solution for this purpose ??? GRE or OpenVPN or IPsec and etc ..
thanks for you reply

Use OpenVPN. It's the most common and it works great. ...and there's 50,000,000 HOWTOs and guides out there for it.

Beg to disagree OpenVPN is not even an internet standard. IPSEC is the most common and vendor inter operable

I'm not saying that you are wrong but, everyone I know runs OpenVPN. If he controls the servers, does it matter if OpenVPN doesn't follow a standard?

OpenVPN is much easier to get going.

I still say go with OpenVPN.

IPSEC security is considered stronger than SSL based VPN's like OpenVPN, given the fact that he wants a tunnel between the two servers am guessing he needs to protect the traffic between them.

Most folks turn to Openvpn because they can not handle the "complexity" of configuring IPSEC tunnels.

I think you just made the decision for him...

If he needs it to be super secure and the complexity doesn't scare him, he'll probably use IPSEC.

If he just needs to keep riff-raff out and needs an easy setup, he'll probably go with OpenVPN.


That was a good summation.

I think openvpn is far away of easy configuration.

I would say like to configuring sendmail. (I've been using sendmail for 7 years so I know)

Anyway
I just wondered few months ago run openvpn on windows<=>linux and I found many parts is not even easy it is just a nightmare.

Between linux boxes (fedora,centos,redhat)you can use network configuration to setup ipsec vpn. There is a wizard under that.

So about 10 click and the ipsec vpn runs.

This is done in ~100 steps under openvpn.
So I would say in this case avoid openvpn and use ipsec.

i have used poptop, openvpn before, and had to use IPSEC yesterday. i was trying to create a VPN tunnel between linux and jupiter, so IPSEC is the only option. servers generally dont have GUI, it means no gui tool. also gui tool would not be enough for a specific configuration. it was really nightmare, and it is still nightmare.. because it doesn't work correctly. i hope i will make it work today..

i can say that openvpn is easier than IPSEC on servers (without gui).

best regards

thanks for your attention
in our case, the encryption is not important, and we need a tunneling solution with smallest overhead in tunnel, which one of these solution has smallest overhead ??
thanks for any help or guide

Then why do u actually need at tunnel ? when you could just transmit via normal TCP/IP anyway you can use ipip tunnels which are very easy to setup using the ip tool.

thanks for your quick reply
I am going to test ipip
May you give me a overhead comparison between IPIP and IPsec and GRE andOpenVPN ??
thanks for any help or guide

Add me to the list of OpenVPN frustrated users. SSL works well for basic VPN for some remote roaming users and stuff, but damn... i've spent a week trying to get my OpenVPN running (thread is in this forum). I can't get it to work for anything.

For site to site where my security is important I use IPSEC which is industry standard and well supported. FreeSwan works well though it has a level of complexity to it as well.