Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
dangerous but powerful software 'softether' 1
- Thread starter bluelake
- Start date
- Status
-
1
- #2
It is a "replacement" for VPN which uses SSL to route the traffic. By doing this, it does not need any additional "holes" in your corporate firewall (everyone usually has Http and Https open anyway.) It is a kernel mode driver installed on the server and client and running as a service...the connection can be created as the machines start, prior to login. It can be configured for client to client, client to lan, or lan to lan connections...up to 256 simutaneous connections are possible.
The web site is " (no english version available yet.)
Alex
The web site is " (no english version available yet.)
Alex
- Thread starter
- #3
A while back some dial-up and broadband providers had closed off the common VPN ports for their home user accounts (long since changed.) Maybe this practice is common in Japan and this was written to specifically bypass this condition.
It is a pretty good idea to have the VPN connection come up before the user login in a broadband world (have you ever used "Login with dial-up connection" check box in Win, then specify a M$ PPTP connection as the "dial-up", then have the VPN auto-dial the ISP account?) We used to suggest this for M$ VPN installations, so I see some benefit to this software (depending on how hard the config is, the speed limitations of HTTPS connection, how well the kernel driver works as a "device", etc.)
I don't want to try my Japanese skills far enough to try the install today! (And since they will have an English Version way before I get better at Japanese, I think I'll watch for the English version and maybe play with it a bit then...)
As for users creating un-approved connections...maybe this could be a security problem. (No worse than the users running a VPN client on their networked machine to connect to a home network though.) Your firewall may have those ports open too...
Maybe an Admin wants to watch the traffic on Https and see if any connections made have very long durations? Even when I do banking online, it usually only takes a few minutes or so, if a single connection stayed up for an hour or more, I would DNS that IP and see if its a legitimate use.
Anyone else have ideas?
Alex
It is a pretty good idea to have the VPN connection come up before the user login in a broadband world (have you ever used "Login with dial-up connection" check box in Win, then specify a M$ PPTP connection as the "dial-up", then have the VPN auto-dial the ISP account?) We used to suggest this for M$ VPN installations, so I see some benefit to this software (depending on how hard the config is, the speed limitations of HTTPS connection, how well the kernel driver works as a "device", etc.)
I don't want to try my Japanese skills far enough to try the install today! (And since they will have an English Version way before I get better at Japanese, I think I'll watch for the English version and maybe play with it a bit then...)
As for users creating un-approved connections...maybe this could be a security problem. (No worse than the users running a VPN client on their networked machine to connect to a home network though.) Your firewall may have those ports open too...
Maybe an Admin wants to watch the traffic on Https and see if any connections made have very long durations? Even when I do banking online, it usually only takes a few minutes or so, if a single connection stayed up for an hour or more, I would DNS that IP and see if its a legitimate use.
Anyone else have ideas?
Alex
- Thread starter
- #5
- Status
Similar threads
- Locked
- Question
- Locked
- Question