Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 11 replies
  • Subscribers 1 subscriber
  • Views 2938 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Which VPN type are you using?

troy.murray
Which type of VPN connection does the majority of your clients use to connect to your network?


This thread was automatically locked due to age.
Parents
  • 0
    I voted in the poll, but wanted to comment that we have been using SSL-VPN, but are finding that VoIP performs very poorly.  I am going to try the other methods to see which work best for voice.

    Ron
  • 0 in reply to ron-astaro@mcleodnet.com
    We'd really like to use L2TP, cause of the authentication methods. As SSL has no AD Group integration or RADIUS.
  • 0 in reply to frozen
    SSL VPNs do support use of backend authentication groups (including AD), while L2TP over IPSec only supports local or RADIUS.
  • 0 in reply to frozen
    We'd really like to use L2TP, cause of the authentication methods. As SSL has no AD Group integration or RADIUS.


    set the domain for the remote access ara and the AD dns and wins servers and ad integration works fine..[:)]

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

  • 0 in reply to William Warren
    I support Windows clients that connect to my protected networks, most of which use the Windows XP built-in PPTP client, although I did configure one with L2TP over IPSec just to try it.  The Astaro software to do the SSL VPN on Windows seems to have problems with the DNS resolution, people have to use the IP address to reach the machine rather then the FQDN.

    On two Macs I've used the built-in PPTP client, I tried Tunnelblick, but found it somewhat "immature" in my opinion.  I just tried the Viscosity OpenVPN client for the Mac and love it!  After you download the Astaro SSL VPN configuration files from the Astaro User Portal, in Viscosity, just import the settings in the .ovpn configuration file, on the Advanced tab for the connection add "--proto tcp-client" and then you should be able to make the connection.  I added my internal subnets to the Networking tab, but you might not need to do that.
  • 0 in reply to troy.murray
    L2TP over IPSEC.

    I would use IPSEC but Astaro doesn't yet support this with the iPhone.

    PPTP doesn't have the level of security I'd be comfortable with. Plus it is pretty much obsolete nowadays.
  • 0 in reply to markcasey
    L2TP over IPSec, and the automatic setup of the iPhone from the User Portal works perfectly.

    Ditto, too, Mark, about PPTP.

    If you're running AD, you can activate RADIUS services on Microsoft IAS for backend authentication with the content of your AD:
    http://portal.knowledgebase.net/utility/downloadArticle.asp?aid=254953

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply Children
Cookie Information Banner