Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Im am setting up a linux box specifically for VPN use. I don't know what type of VPN's I will be connecting to untill last minute, and need to be able to support a wide range of VPN products.
We have been using rhel3 and redhat9. I have chosen a single processor computer, as cisco's vpnclient doesn't work with SMP kernels...
I was thinking of setting up this box using shrike, unless there is a reason why some other distro would be better with this type of stuff.
As far as the S/WAN's go. Im thinking I won't go with freeswan as its no longer being maintained. but does anyone have any input on Openswan or Strongswan? Any other recommended VPN or IpSEC stuff?
Key things that I am looking for are (in order)
1. Will support the most types of connections, or protocals.
2. Is commercial support available.
3. ease of setup. - well the last one isn't a biggy.
I think Openswan (http://www.openswan.org/) is the successor to freeswan and is still in active development.
If you've got a choice of what VPN you setup then personally I'd recommend Openvpn (www.openvpn.org) over any of the IPSec based ones anyday due to its simplicity (10 times easier to setup than IPSEC), native support for NAT and use of openssl libs (security problems will be the same ones that affect SSH and all that and therefore will get fixed just as quickly).
Out of curiousity, do you (tkedwards) know of a Windows client for OpenVPN? At my school, we use a Cisco VPN client for access on the wireless network, and was hoping to set up something similar at my house so I can access NFS and SMB shares without exposing them to the internet. (SSH tunneling would only work for a single host on the remote LAN)
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.