× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. February 2002

RE: VPN server

The most secure VPN approach would be L2TP w/IPSec but that requires
certificates be issued to and installed on client machines, AND if you're
using a VPN server that doesn't support the MS client then you need to
install the client code too. Also, if you want security, make sure you don't
allow split tunnels. However, that means that you can't access "the net" and
the "VPN" at the same time.

You mentioned that you want to give "a customer" access to your AS/400. Are
they behind a firewall on their end? Also, are they using NAT? If so you
have more problems with IPSec. Firewalls on both ends will have to change
and IPSec won't work w/NAT unless the IPSec server includes the "new"
standards (in other words not too "standard") that enable it to work over
NAT.

IMHO, the additional headache of all that isn't worth the additional
security IPSec buys you, but it depends on what you're trying to secure.

-Walden

------------
Walden H Leverich III
President
Tech Software
(516) 627-3800 x11
(208) 692-3308 eFax
WaldenL@TechSoftInc.com
http://www.TechSoftInc.com



-----Original Message-----
From: Peter Dow [mailto:pcdow@yahoo.com]
Sent: Monday, February 25, 2002 19:01
To: midrange-l@midrange.com
Subject: Re: VPN server


Hi Nathan,

I remember setting up one on WinNT4 Server; it's good to know it's available
with Win2K Pro.  Is it considered a secure solution?  Or are the other
solutions out there *more* secure?

tia,
Peter Dow
Dow Software Services, Inc.
909 425-0194 voice
909 425-0196 fax

----- Original Message -----
From: "Nathan Simpson" <nathansimpson@optusnet.com.au>
To: <midrange-l@midrange.com>
Sent: Monday, February 25, 2002 3:49 PM
Subject: RE: VPN server


> Win2k Prof can be a VPN Server as can Win2K Server.
>
> So can Win NT4 I think with the routing add-on.
>
> Pretty cheap and you may have these lying around.
>
> -----Original Message-----
> From: midrange-l-admin@midrange.com
> [mailto:midrange-l-admin@midrange.com]On Behalf Of Peter Dow
> Sent: Tuesday, 26 February 2002 10:25
> To: MIDRANGE-L@midrange.com
> Subject: VPN server
>
>
> Hi All,
>
> Where's a good source for information on VPN servers vs clients?  The
> concept is easy to understand; the implementation appears to be
> spreading out from software-only to VPN appliances, and it's not clear
> to me what's required on either end.  I'm looking for the simplest,
> least expensive solution, naturally.  I want to provide a customer
> access to my AS/400 via the internet using VPN.
>
> Specific questions I have are:
>
> 1. Is there a standard VPN protocol?  I.e. there appears to be IPsec,
> M$ PPTP, and probably others.  Am I correct in assuming these are
incompatible?
>
> 2. Are these VPN appliances servers, or clients?
>
> 3. What's a ballpark cost to provide VPN for 3-5 users?
>
> 4. Where can I read about this?
>
> tia,
> Peter Dow
> Dow Software Services, Inc.
> 909 425-0194 voice
> 909 425-0196 fax
>
>
>
> _________________________________________________________
> Do You Yahoo!?
> Get your free @yahoo.com address at http://mail.yahoo.com
>
> _______________________________________________
> This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing
list
> To post a message email: MIDRANGE-L@midrange.com
> To subscribe, unsubscribe, or change list options,
> visit: http://lists.midrange.com/cgi-bin/listinfo/midrange-l
> or email: MIDRANGE-L-request@midrange.com
> Before posting, please take a moment to review the archives at
> http://archive.midrange.com/midrange-l.
>
> _______________________________________________
> This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing
list
> To post a message email: MIDRANGE-L@midrange.com
> To subscribe, unsubscribe, or change list options,
> visit: http://lists.midrange.com/cgi-bin/listinfo/midrange-l
> or email: MIDRANGE-L-request@midrange.com
> Before posting, please take a moment to review the archives at
> http://archive.midrange.com/midrange-l.


_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com

_______________________________________________
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@midrange.com To subscribe, unsubscribe,
or change list options,
visit: http://lists.midrange.com/cgi-bin/listinfo/midrange-l
or email: MIDRANGE-L-request@midrange.com
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.