hi;
I am using a Borderware v6.5 firewall and the Ipsec Vpn plug-in to create some vpn's. This setup works great, Borderware just has a few bugs to work out
Pros:
Stable, easy to set up, PreShared Keys and DigiCerts, tunnel mode and client mode.
Cons: (aka i need some help with this stuff)
-the included SSH sentinal VPN client doesn't support virtual ip addresses yet. We called them and it is scheduled for a future release. Can someone recommend another vpn client?
-i am looking for a way to force a prompt for authentication. I currently start the vpn connection, then log off and logon using a domain account. The vpn connection survives the logoff/logon process and i am connected to the domain.(runs a logon script and everything) This is a pain as you can well imagine. WinXp doesn't support "net logon" anymore
-adding/changing a vpn client requires a restart of the service and all of our tunnel mode connections restart too.
We have also purchased BlackIce personal firewall and IceCap manager which can push the firewall software and firewall profiles to the vpn clients. Except we need virtual ip addresses to identify the vpn clients from network clients. I am installing Blackice manually for now.
I am using a Borderware v6.5 firewall and the Ipsec Vpn plug-in to create some vpn's. This setup works great, Borderware just has a few bugs to work out
Pros:
Stable, easy to set up, PreShared Keys and DigiCerts, tunnel mode and client mode.
Cons: (aka i need some help with this stuff)
-the included SSH sentinal VPN client doesn't support virtual ip addresses yet. We called them and it is scheduled for a future release. Can someone recommend another vpn client?
-i am looking for a way to force a prompt for authentication. I currently start the vpn connection, then log off and logon using a domain account. The vpn connection survives the logoff/logon process and i am connected to the domain.(runs a logon script and everything) This is a pain as you can well imagine. WinXp doesn't support "net logon" anymore
-adding/changing a vpn client requires a restart of the service and all of our tunnel mode connections restart too.
We have also purchased BlackIce personal firewall and IceCap manager which can push the firewall software and firewall profiles to the vpn clients. Except we need virtual ip addresses to identify the vpn clients from network clients. I am installing Blackice manually for now.