Nico Schottelius
(linux|unix).schottelius.org
I try to provide a full overview of all Linux tools/implementations. If there is something missing, please send an email to me.
| implementation | kernel version | description |
|---|---|---|
| freeswan | 2.2 and 2.4 | klips/nice debug |
| ipsec_tunnel | >=2.4.18 | untested |
| USAGI | 2.2 and 2.4 | untested |
| NIST Cerberus | 2.2.14 (others may work,too) | untested |
| xkernel | 2.0? | untested and closed down |
| Linux Kernel (native support) | 2.4(external patch), 2.5 and 2.6 | works fine |
I sorted those implementations: First appear the tools I had best experience with. With the last ones I have no or bad experience.
| ike | works with.. | description |
|---|---|---|
| isakmpd | Linux Kernel,ipsec_tunnel (with patches) | works fine and easy :) |
| freeswan/pluto | klips (included), ipsec_tunnel, Linux Kernel | had problems with host2net tunnel (1.99 version) |
| ipsec-tools | Linux Kernel | uses racoon/kame |
| super freeswan | klips (included), Linux Kernel | untested |
| cisco vpn client | own | untested |
| NIST/PlutoPlus | NIST Cerberus | untested |
| pipsecd | none/own: uses Linux tun device | untested, but looks good for 2.0/2.2 kernels |
Realtime discussion (IRC/SILC)
Silcnet/ipsec: generell IPSec discussion
irc.freenode.org/#freeswan
freeswan/superfreeswan discussion
WWW
IPSec and Linux?- From 1997
Linux(freeswan), OpenBSD(isakmpd) and PGPNet
http://lartc.org/howto/lartc.ipsec.html
http://www.tecchannel.de/betriebssysteme/969/index.html (german)
Windos
isakmpd+win2k/xp
freeswan + x509 with win2k/xp (vpnclient) (german)
freeswan + x509 with win2k/xp (vpntool)
*BSD
NetBSD IPSec Howto- you can read it for general ipsec information, too