On Fri, May 31, 2013 at 8:07 PM, Stephen <cryptworks@gmail.com> wrote:

How well does it play with Cisco as an alternative to the anyconnect application?

You don't *have* to use the Cisco provided client (as you already well know) there's VPNC as well, which works *very* well under linux, and is insanely easy to build, configure and run.

Generally, OpenVPN is a SSL VPN and Cisco uses IPSEC, but that doesn't mean it's not possible. Most all of Cisco's newer VPN offerings support SSL VPN.

Do you have a specific Cisco VPN device in mind? Or do you mean any Cisco VPN device?

If you mean a VPN 3000 concentrator, I would say no.
If you mean an ASA device, I would say yes.
If you mean a IOS device, I would say maybe. (Depending on version and a good deal of tinkering)
If you mean a PIX device, I would say maybe. (Depending on version and a good deal of banging head against wall)

Technically "it's not supported". But the "not supported" tag (primarily used to reduce costs of large businesses trying to train their non-technical customers to use anything more complex than an off/on button) is clearly not any limitation for linux people?

Just go with a Cisco compatible client!

OpenConnect is still a very good product, and I would choose it over Cisco's client any day!

http://www.infradead.org/openconnect/

Also, you can allow OpenVPN through the cisco firewall and run both IPSEC and SSL VPN, by getting a nice OpenVPNAS Virtual Appliance, you will be up and running in 1/2 hour, plus your users can go right to the VPN server and authenticate and download their clients without any big fuss. Just because you have a Cisco VPN available, doesn't mean you must use that IPSEC virtual private tunnel exclusively. Once you allow SSL VPN, you can use a quick setup OpenVPN AS Server:

Here's what the OpenVPN Access Server looks like: https://12.159.65.84/?src=connect PLUG HackFest VPN services for Labs in the DeVry Rack at OneNeck Hosting.

Reference: http://www.unix-ag.uni-kl.de/~massar/vpnc/

Installation Reference vpnc Ubuntu: http://www.ed.ac.uk/schools-departments/information-services/services/computing/desktop-personal/vpn/vpn-cisco-client/vpn-cisco-ubuntu

Cisco VPN FAQ: http://www.cisco.com/en/US/products/sw/secursw/ps2308/products_qanda_item09186a00801c2dbe.shtml

Examples of 64bit OS Cisco client issues: http://micro.stanford.edu/wiki/How_to_install_and_configure_the_Cisco_VPN_client_on_a_Linux_computer#64-bit_operating_system_errors

On May 31, 2013 5:23 PM, "Lisa Kachold" <lisakachold@obnosis.com> wrote:
Stephen,
On Fri, May 31, 2013 at 2:11 PM, Stephen Rufle <stephen.p.rufle@cox.net> wrote:

My only compatibly issue was getting the VPN tunnel that my job uses to work in 64 bit.
Juniper network-connect software on Ubuntu not sure what version, but it was around 2011. My advice is to do a 64 bit install and then do a tests with your personal list of high priority software.

OpenVPN works wonderfully with Juniper VPN's; completely supplanting the Network-Connect application.

http://vpnthebestvpn.com/vpn1/juniper-vpn-64-bit.html
On 5/31/13 9:28 AM, keith smith wrote:
Hi,

Even though I have 64bit hardware I always install the 32bit version of Linux. I do so because of the past discussions on this list that made me believe the 32bit OS was better because 64bit caching is actually slower due to the requirement that the cache be filled to a certain point before it is moved. I think I recall something about the amount of RAM having some effect here also.

Using a 32bit version over a 64bit version seems counter intuitive, however that is what I have taken away from these conversations about 32bit vs 64bit Linux.

I'm using CentOS 6.x on a LAMP server that gets a low amount of traffic. However I may make the jump to Linux on my desktop this summer. (this will be my 3rd attempt to become M$ free except one VM so I can use IE for testing) I think all of my hardware is 64bit.

So that begs the question, is 32bit better than 64bit or do I not understand the issue?

Thank you for your feedback.

Keith

------------------------
Keith Smith
---------------------------------------------------
PLUG-discuss mailing list - PLUG-discuss@lists.phxlinux.org
To subscribe, unsubscribe, or to change your mail settings:
http://lists.phxlinux.org/mailman/listinfo/plug-discuss
---------------------------------------------------
PLUG-discuss mailing list - PLUG-discuss@lists.phxlinux.org
To subscribe, unsubscribe, or to change your mail settings:
http://lists.phxlinux.org/mailman/listinfo/plug-discuss
--

(503) 754-4452 Android
(623) 239-3392 Skype
(623) 688-3392 Google Voice
**
it-clowns.com
Chief Clown

---------------------------------------------------
PLUG-discuss mailing list - PLUG-discuss@lists.phxlinux.org
To subscribe, unsubscribe, or to change your mail settings:
http://lists.phxlinux.org/mailman/listinfo/plug-discuss
---------------------------------------------------
PLUG-discuss mailing list - PLUG-discuss@lists.phxlinux.org
To subscribe, unsubscribe, or to change your mail settings:
http://lists.phxlinux.org/mailman/listinfo/plug-discuss