Re: site to site VPN|
Mon, 15 Sep 2003 11:12:15 -0400|
Have you worked much with CIPE on win32?
I installed it yesterday on my laptop and have since had two bluescreens
(each is a dump&reboot), two instances of the CIPE service pulling 100%
CPU, and upon each boot up the CIPE service fails to load and requires a
manual restart from services in the control panel.
At this point, unfortunately I cannot recommend CIPE as a VPN solution to
my company, since all of our roadwarriors run win32.
Just wondering if you or anyone else has comments on the matter.
Sent by: cc:
owner-cipe-l@inka Subject: Re: site to site vpn
CIPE is perfectly suited to your needs. I have the setup in place for many
clients worldwide. I personally chose cipe long ago before it was in any
distribution because of its security and manageability. Many of my clients
have 'remote' or branch offices/sites in various geographic locations.
spanning multiple continents. So the costs involved for them to lease a
dedicated line to another site can quickly become prohibitive. CIPE allows
for a secure tunnel through any medium, thus giving them even more security
than a dedicated line for the cost of a standard high speed internet
connection. Since CIPE tunnels all traffic encapsulated inside UDP packets,
your traffic is 'invisible' to the casual snooper/sniffer. Some people
don't like the private key mechanism, I happen to prefer it, so CIPE has
always been the perfect solution for me. As for support, the fine people
this list will help you from the most trivial to the most obfuscated
implementations you can think of.
I have 'evaluated' other tunnel forms, including IPSEC devices, freeswan,
etc. Nothing stacks up to CIPE for my needs. My clients include private
coroporations, government offices, financial institutions, academia,
community, etc. Some of the connections are very critical and even have
failover configurations with secondary connections available, and they ALL
have strong security needs. They trust my company with all their data and
data security, and I trust CIPE.
I sound like a CIPE commercial! That's okay, I believe in it, I'd do a
commercial for free!
Berrex Computer Solutions
----- Original Message -----
From: "Keith Fernandez" <keith,AT,theargoncompany,DOT,com>
Sent: Monday, September 15, 2003 10:21 AM
Subject: site to site vpn
> I have two offices, where I need to allow the machines in one office to
> the machines in the other office.
> Is that possible with just using CIPE.
> Is there something besides setting up CIPE that I need to do...
> My requirement
> I want the machines from both subnets to see machines from other subnets
> though they are on the same network, to acess services like samba,
> mail(pop/smtp), etc..
> What I have
> The two network's have differnet private addressing's for the subnets
> 192.168.0.0/24 192.168.100.0/24
> We have fast static public IP addresses to the internet...
> This is possible with SuperFreeSWAN... If I can do this with CIPE, I
> like to switch over to cipe, since redhat has support for CIPE, and I
> have to patch and compile kernels....
> Thanks in advance.....
> "I asked for strength and God gave me difficulties to make me strong.
> I asked for Wisdom... and God gave me problems to solve.
> I received nothing I wanted... But I received everything I needed."
> Message sent by the cipe-l,AT,inka,DOT,de mailing list.
> Unsubscribe: mail majordomo,AT,inka,DOT,de, "unsubscribe cipe-l" in body
> Other commands available with "help" in body to the same address.
> CIPE info and list archive:
Message sent by the cipe-l,AT,inka,DOT,de mailing list.
Unsubscribe: mail majordomo,AT,inka,DOT,de, "unsubscribe cipe-l" in body
Other commands available with "help" in body to the same address.
CIPE info and list archive: <URL: