[VPN] SSL VPN
Alex Pankratov
alex at cipherica.com
Mon Apr 28 22:58:54 EDT 2003
Vincent,
coincidentally I was looking at securing TS traffic just last week, so
as an alternative you may want to look at MS own article:
http://support.microsoft.com/?kbid=315055,
"HOW TO: Use IPSec Policy to Secure Terminal Services Communications in
Windows 2000".
This is not much, it does not talk on how to setup authentication or
about NAT traversal, etc, etc.
Amongst SSL-based solutions, http://stunnel.org is the first thing that
comes to mind. I dont see any reason why it should not work, so I'd try
it first.
On the more general topic, I recently wrote a small article about very
simple aspect of TCP-based VPNs, which can seriously undermine
robustness of the former. The issue worths considering depending on your
deployment scenario.
http://www.cipherica.com/papers/tcp-vpn-dos.pdf
cheers,
alex.
Bartsch, Vincent wrote:
> I am researching everything about SSL and it's use as a VPN solution. I
> am aware of some of
> it's limitations but I was wondering has anyone tried this: allowed a
> SSL connection to a web
> server that lets the user to open a connection to a terminal server. Or
> can it be configured to
> connect to a terminal server via a SSL connection directly? Has anyone
> tried this, were they
> successful?
>
> Again, I am just researching this thought. Any word back on this would
> be most appreciated,
> thanks.
>
> Vincent
>
More information about the VPN
mailing list