Ars Technica

Fortigate to CISCO IPSEC VPN

Thought I'd start a new thread rather than hijack the other one. We're switching to a new MPLS VPN provider with 4 sites and a central colocation facility which tails into the internet. Each of the ...
Network World

Preventing IPsec VPN failures: recommendations (part 1)

Well, based on a number of emails I have received, some people were quite surprised to learn in my first blog post that poorly designed and configured IPsec VPNs are vulnerable not only to the NSA and ...
Network World

Stronger IPsec VPN Configurations Needed

The use of IPsec is pervasive throughout the networking industry. However, many organizations are using IPsec in sub-optimal configurations that result in weaker connection security. Many ...
Ars Technica

Cisco ASA Remote Access VPN - Dedicated public IP address needed?

I am trying to configure a Cisco ASA 5506-X for use a remote access vpn server. To avoid buying an AnyConnect licence I am planning to use L2TP/IPSec. We only have one public IP address. We are ...
EDN

IPsec, a Tutorial–Part IX

For smaller networks on which keys can be manually defined, IKE preshared keys (PSKs) can be used. PSKs are manually defined in the IKE policy of each crypto endpoint. Once crypto and ISAKMP policies ...
Linux Journal

Creating VPNs with IPsec and SSL/TLS

VPN (Virtual Private Network) is a technology that provides secure communication through an insecure and untrusted network (like the Internet). Usually, it achieves this by authentication, encryption, ...
EDN

IPsec, a Tutorial–Part V

As discussed above, IPsec delivers data confidentiality services by executing a transform on plain text data. Common ciphers used in the IPsec transform are DES, 3DES, and AES. All of these transforms ...