IPsec vs VPN - One's A Standard One Is Not...

Discussion in 'privacy technology' started by DasFox, Jun 11, 2011.

Thread Status:
Not open for further replies.
  1. DasFox

    DasFox Registered Member

    Joined:
    May 5, 2006
    Posts:
    1,825
    Many here may or may not know about IPsec but many here have certainly heard about VPN, in particular as it relates to OpenVPN.

    But did you know that IPsec is an official protocol standard and OpenVPN is, well a software application that just implements a virtual private network.

    Here's Wiki's info on IPsec;
    https://secure.wikimedia.org/wikipedia/en/wiki/IPsec

    One thing I do know since IPsec is a standard, for some strange reason you don't see many of these fly-by night shady VPN providers out there offering it and finding IPsec is harder. But does that mean VPN can't be good or safe, it certainly can be good and safe, I'm just throwing some food for thought out there, that when you find companies offering IPsec, you tend to find something more legitimate and real...

    Next time you're having a hard time weeding through all the BS VPN Providers consider looking for someone offering IPsec...

    Hopefully some real protocol experts can jump in on this post and share a bit about the differences here...

    Also if anyone knows companies that offer IPsec please share what you know...


    VpyrVPN which is a part of Giganews offers IPsec and I found an interesting program that is cross platform for IPsec called Shrew Soft.

    Here's some links on those;
    https://www.goldenfrog.com/vyprvpn/vpn-service-provider
    http://www.shrew.net/software

    THANKS
     
  2. Spooony

    Spooony Registered Member

    Joined:
    Apr 30, 2011
    Posts:
    514
    Ipsec VPN is horrible to setup. People give up on it very quickly after reading hours of documentation on it. Its a complex setup.

    Ipsec you need a client to do it and compability normally a issue as not every platform supports it.
    SSL is easy to setup and the applications ability to use it extends as you don't need the client to do it. Eg web browsers. its more widely supported as well. Companies who have ITs people specialized on how to set up IPSEC then its great but not everyone has that luxury. That's why you have a choice between the two. But the complex issue is starting to change on bsd. But how many people do run bsd that's the question

    Btw you get IPSEC and ssl. Its ssl vs Ipsec.
    Another question why are you looking for a provider for Ipsec. install bsd a couple of commands and off you go.

    The provider in it then its not a VPN but connectivity service.
     
    Last edited: Jun 20, 2011
  3. Lyx

    Lyx Registered Member

    Joined:
    Apr 4, 2009
    Posts:
    83
    I'm not an expert at all but there is at least an obvious difference between L2TP/IPSEC VPN and OPENVPN: The identification key.

    With OpenVPN, you get certificates, eg via email, and one can assume that an attacker doesn't know these certificates.

    With L2TP/IPSEC, the identification key is the same for all clients using the vpn, and it suffices to an attacker to pay few $ for the vpn subscription, in order to get the key.

    With it, he is then able to perform a man in the middle attack against you.
     
Loading...
Thread Status:
Not open for further replies.