Hab grad eben was nettes gefunden.
Für alle die die Cisco VPN oder LANCom etc. VPN nutzen ist dies eine gelungene Alternative.
Schauts euch mal an.
This guide describes how to configure and operate the Shrew Soft VPN Client with an open source VPN Gateway. By tunneling traffic between the VPN Client and the VPN Gateway, the host is able to access private network resources in a manner which is secure even when connecting from an insecure public network.
This functionality is provided by implementing the IPsec Protocol standard which is used by a wide variety of both commercial and open source operating systems.
Many commercial VPN Gateways are available on the market. Most of these products are bundled with proprietary VPN Client software that is designed to communicate with a specific gateway device. While most major open source operating systems have had support for basic IPsec functionality for some time, they have lacked a sophisticated IKE daemon and kernel support for protocol extensions that would be required to properly support IPsec Client connectivity. Luckily this is no longer the case. Recent improvements to the IPsec Tools software and added kernel support for features such as NAT Traversal have enabled open source operating systems such as Linux, FreeBSD or NetBSD to be considered as a viable alternative to expensive commercial VPN Gateway solutions. The Shrew Soft VPN Client offers a complimentary Windows IPsec implementation that can be used to communicate with these gateways.Features
This Software implements the IPsec Protocol standard and uses ISAKMP version 1.0 to negotiate security parameters with a VPN Gateway. In addition, it includes support for the XAuth protocol extension for user authentication and the Configuration Exchange extension for automatic client configuration. Please read below for a complete list of supported features.
Firewall Traversal Options
NAT Traversal ( RFC & Draft 00-04 versions )
NAT Keep Alive
Hybrid RSA + XAuth
Mutual RSA + XAuth
Mutual PSK + XAuth
Configuration ( push or pull )
Phase1 Hash Algorithms
Phase2 HMAC Algorithms
PFS is supported
Tunnel mode is supported
Transport mode is not supported
Compression is not supported
Basic Configuration Exchange Attributes
Advanced Configuration Exchange Attributes
DNS Default Domain
Split Network Include List
Split Network Exclude List
Split DNS Domain List
PFS DH Group Compatibility
For best results, Shrew Soft recommends the use of a VPN Gateway running Linux, FreeBSD or NetBSD and IPsec Tools version 0.7 or later. The VPN Client has also been reported to work with several commercial VPN Gateways. Please consult the Shrew Soft Online support wiki for more details.
..leider nicht für OpenVPN.