Skip to main content
IBM 
ShopSupportDownloads
IBM HomeProductsConsultingIndustriesNewsAbout IBM
IBM : developerWorks : Security : Education - online courses
Virtual private networks, Part 2		Download tutorial zip fileView letter-sized PDF fileView A4-sized PDF fileE-mail this tutorial to a friend
Main menuSection menuGive feedback on this tutorialPrevious
Next Section
5. VPN implementations
  


Products of note: BSD Linux, the IKE module page 4 of 4


BSD Linux contains one of the most full-featured open source IPSec VPNs. It is very interoperable and has a reliable reputation in the field. The VPN's documentation, however, is weak.

The IKE module (raccoon) can be extended to accept X.509 certs, although it does not yet validate the cert to the issuing server. It also uses 3DES (triple-DES) for the encryption, which brings it up to current NIST standards. Additionally, a packet filter is built into BSD that can be configured to run as a firewall in conjunction with the VPN.

Interestingly, this VPN implementation will run on the Macintosh򳠍 OS X because OS X uses BSD networking.


Next Section
Main menuSection menuGive feedback on this tutorialPrevious
PrivacyLegalContact