|
The most secure VPN approach would be L2TP w/IPSec but that requires certificates be issued to and installed on client machines, AND if you're using a VPN server that doesn't support the MS client then you need to install the client code too. Also, if you want security, make sure you don't allow split tunnels. However, that means that you can't access "the net" and the "VPN" at the same time. You mentioned that you want to give "a customer" access to your AS/400. Are they behind a firewall on their end? Also, are they using NAT? If so you have more problems with IPSec. Firewalls on both ends will have to change and IPSec won't work w/NAT unless the IPSec server includes the "new" standards (in other words not too "standard") that enable it to work over NAT. IMHO, the additional headache of all that isn't worth the additional security IPSec buys you, but it depends on what you're trying to secure. -Walden ------------ Walden H Leverich III President Tech Software (516) 627-3800 x11 (208) 692-3308 eFax WaldenL@TechSoftInc.com http://www.TechSoftInc.com -----Original Message----- From: Peter Dow [mailto:pcdow@yahoo.com] Sent: Monday, February 25, 2002 19:01 To: midrange-l@midrange.com Subject: Re: VPN server Hi Nathan, I remember setting up one on WinNT4 Server; it's good to know it's available with Win2K Pro. Is it considered a secure solution? Or are the other solutions out there *more* secure? tia, Peter Dow Dow Software Services, Inc. 909 425-0194 voice 909 425-0196 fax ----- Original Message ----- From: "Nathan Simpson" <nathansimpson@optusnet.com.au> To: <midrange-l@midrange.com> Sent: Monday, February 25, 2002 3:49 PM Subject: RE: VPN server > Win2k Prof can be a VPN Server as can Win2K Server. > > So can Win NT4 I think with the routing add-on. > > Pretty cheap and you may have these lying around. > > -----Original Message----- > From: midrange-l-admin@midrange.com > [mailto:midrange-l-admin@midrange.com]On Behalf Of Peter Dow > Sent: Tuesday, 26 February 2002 10:25 > To: MIDRANGE-L@midrange.com > Subject: VPN server > > > Hi All, > > Where's a good source for information on VPN servers vs clients? The > concept is easy to understand; the implementation appears to be > spreading out from software-only to VPN appliances, and it's not clear > to me what's required on either end. I'm looking for the simplest, > least expensive solution, naturally. I want to provide a customer > access to my AS/400 via the internet using VPN. > > Specific questions I have are: > > 1. Is there a standard VPN protocol? I.e. there appears to be IPsec, > M$ PPTP, and probably others. Am I correct in assuming these are incompatible? > > 2. Are these VPN appliances servers, or clients? > > 3. What's a ballpark cost to provide VPN for 3-5 users? > > 4. Where can I read about this? > > tia, > Peter Dow > Dow Software Services, Inc. > 909 425-0194 voice > 909 425-0196 fax > > > > _________________________________________________________ > Do You Yahoo!? > Get your free @yahoo.com address at http://mail.yahoo.com > > _______________________________________________ > This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list > To post a message email: MIDRANGE-L@midrange.com > To subscribe, unsubscribe, or change list options, > visit: http://lists.midrange.com/cgi-bin/listinfo/midrange-l > or email: MIDRANGE-L-request@midrange.com > Before posting, please take a moment to review the archives at > http://archive.midrange.com/midrange-l. > > _______________________________________________ > This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list > To post a message email: MIDRANGE-L@midrange.com > To subscribe, unsubscribe, or change list options, > visit: http://lists.midrange.com/cgi-bin/listinfo/midrange-l > or email: MIDRANGE-L-request@midrange.com > Before posting, please take a moment to review the archives at > http://archive.midrange.com/midrange-l. _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com _______________________________________________ This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list To post a message email: MIDRANGE-L@midrange.com To subscribe, unsubscribe, or change list options, visit: http://lists.midrange.com/cgi-bin/listinfo/midrange-l or email: MIDRANGE-L-request@midrange.com Before posting, please take a moment to review the archives at http://archive.midrange.com/midrange-l.
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.