[plug] CIPE / VPN
Craig Ringer
craig at postnewspapers.com.au
Tue Oct 21 16:20:03 WST 2003
> has anyone had much experience with CIPE ( Crypto IP Encapsulation - VPN ) . I am setting up a connection from a Telstra GPRS modem ( embedded linux server monitoring cooling towers) to a central data server. Can anyone suggest any experiences with encrypted tunnels over the internet, notebly behind a NAT gateway.
It got bagged really badly by a security type recently - on the IETF
IPSec list, I think. OTOH, I can't seem to find it now, so all I can
tell you is that they guy's opinion of CIPE's security was less than
glowing. Alas, the "easy" alternatives are all apparently worse,
especially PPTP.
I'd love to suggest using IPSec but (a) the NAT will be a problem, and
(b) Linux 2.4 IPSec is IMHO a most un-fun experience indeed.
No chance of just using ssh to tunnel the required traffic? Unless you
need to push UDP traffic through that should do the job nicely.
Alternately (arrggh) you could run ppp over ssh.
Craig Ringer
_______________________________________________
plug mailing list
plug at plug.linux.org.au
http://mail.plug.linux.org.au/cgi-bin/mailman/listinfo/plug
More information about the plug
mailing list