It is currently 23.11.2017 07:18


All times are UTC




Post new topic Reply to topic  [ 1 post ] 
Author Message
 Post subject: Shrew Soft VPN Client
PostPosted: 10.11.2008 18:35 
AES 192 bit
AES 192 bit
User avatar

Joined: 02.04.2006 10:44
Posts: 101
Hi!
Hab grad eben was nettes gefunden.
Für alle die die Cisco VPN oder LANCom etc. VPN nutzen ist dies eine gelungene Alternative.

Schauts euch mal an.
Image

Webseite:
http://www.shrew.net/?page=software

Screenshots:
http://www.shrew.net/?page=sshots&prod=vpn

Overview

This guide describes how to configure and operate the Shrew Soft VPN Client with an open source VPN Gateway. By tunneling traffic between the VPN Client and the VPN Gateway, the host is able to access private network resources in a manner which is secure even when connecting from an insecure public network.
Image
This functionality is provided by implementing the IPsec Protocol standard which is used by a wide variety of both commercial and open source operating systems.

Many commercial VPN Gateways are available on the market. Most of these products are bundled with proprietary VPN Client software that is designed to communicate with a specific gateway device. While most major open source operating systems have had support for basic IPsec functionality for some time, they have lacked a sophisticated IKE daemon and kernel support for protocol extensions that would be required to properly support IPsec Client connectivity. Luckily this is no longer the case. Recent improvements to the IPsec Tools software and added kernel support for features such as NAT Traversal have enabled open source operating systems such as Linux, FreeBSD or NetBSD to be considered as a viable alternative to expensive commercial VPN Gateway solutions. The Shrew Soft VPN Client offers a complimentary Windows IPsec implementation that can be used to communicate with these gateways.

Features

This Software implements the IPsec Protocol standard and uses ISAKMP version 1.0 to negotiate security parameters with a VPN Gateway. In addition, it includes support for the XAuth protocol extension for user authentication and the Configuration Exchange extension for automatic client configuration. Please read below for a complete list of supported features.

Firewall Traversal Options

NAT Traversal ( RFC & Draft 00-04 versions )
NAT Keep Alive
IKE Fragmentation

Authentications Methods

Hybrid RSA + XAuth
Mutual RSA + XAuth
Mutual PSK + XAuth
Mutual RSA
Mutual PSK

Identification Types

ASN1DN
FQDN
UFQDN
Address
Key Identifier

Exchange Modes

Main
Aggressive
Configuration ( push or pull )
Quick
Informational

Phase1 Ciphers

AES
Blowfish
3DES
CAST
DES

Phase1 Hash Algorithms

MD5
SHA1

Phase2 Transforms

ESP-AES
ESP-Blowfish
ESP-3DES
ESP-CAST
ESP-DES

Phase2 HMAC Algorithms

HMAC-MD5
HMAC-SHA1

Phase2 Options

PFS is supported
Tunnel mode is supported
Transport mode is not supported
Compression is not supported

Basic Configuration Exchange Attributes

Banner
Address
Netmask
WINS Server
DNS Server

Advanced Configuration Exchange Attributes

DNS Default Domain
Login Banner
Split Network Include List
Split Network Exclude List
Split DNS Domain List
PFS DH Group

Compatibility

For best results, Shrew Soft recommends the use of a VPN Gateway running Linux, FreeBSD or NetBSD and IPsec Tools version 0.7 or later. The VPN Client has also been reported to work with several commercial VPN Gateways. Please consult the Shrew Soft Online support wiki for more details.

..leider nicht für OpenVPN.

ApPzLaNd


Top
Offline Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 1 post ]  Moderator: Moderators

All times are UTC


Who is online

Users browsing this forum: No registered users and 1 guest


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
Theme created StylerBB.net