For the love of jebus please give us IPSEC & PPTP!

Printable View

Show 40 post(s) from this thread on one page

10-01-2009, 12:32 PM
joemailey

Quote:

Originally Posted by sky-knight

What did you think a feature this massive would just materialize in the new version?

7.0's massive fix was the reports module.

An extremely massive fix at that :-):worship:
10-01-2009, 12:37 PM
sky-knight

Yes it is...

But to everyone else here have some patience. Remember, the reports module that makes up the bulk of the work done to 7.0 started back in March!

http://bugzilla.untangle.com/show_bug.cgi?id=3158

There is the IPSec bug, and it isn't assigned. Not enough votes.
10-01-2009, 12:46 PM
gotkimchi

Another point of view from the other side of the fence. Looking through the forums and the support logs, we get very high number of cases on the OpenVPN. Remember, the current implementation of the OpenVPN is with SSL. Its fairly easy to setup, yet we get high volume of support calls and forum posts.

Try and picture this scenario. Just imagine that the Untangle does support IPsec. Think about all the support calls and forum posts. (could be a good thing or bad, pending on whos looking)
10-01-2009, 03:35 PM
mrunkel

Hehe, maybe a special $125/call IPSEC support fee. Could be quite the money maker for us until our support staff hang themselves.

In all seriousness, we have researched IPSEC support and are interested in doing it, it's just really hard to implement in a "plug and play" method. Anyone who has ever tried to make two different vendor's IPSEC VPNs work together knows what I'm talking about.

So what exactly do you guys want? Site to Site IPSEC? Windows IPSEC client support? Because most IPSEC setups (like monowall) don't support that today.

Which other IPSEC clients should we support?

Is the only issue with OpenVPN support that it isn't available on the iPhone? In what application does the iPhone require vpn support? I'm guessing HTTPS isn't sufficient for these applications?

Would an Untangle OS X openvpn client setup (like we do for windows) help things?

As for PPTP, I don't see that on the roadmap for Untangle, but I'm just one guy here. It's yesterday's technology that didn't provide what it said it should long ago.

Not trying to fan the flames, I'm genuinely curious.
10-01-2009, 04:11 PM
ntldr

Quote:

Originally Posted by sky-knight

However, I agree with the shift from Blackberry to iPhone.. It's a HUGE step in the right direction.

I know this is off-topic, but I sincerely hope you guys are talking about SMB and not Enterprise/Government.

I'll send you my locked BB Pearl and you send me your locked iPhone. Let's see how long it takes the other to peak at the file system.

Heck, our Dear Leader uses a BB. :rolleyes:
10-01-2009, 04:21 PM
far182

Quote:

Originally Posted by mrunkel

Hehe, maybe a special $125/call IPSEC support fee. Could be quite the money maker for us until our support staff hang themselves.

In all seriousness, we have researched IPSEC support and are interested in doing it, it's just really hard to implement in a "plug and play" method. Anyone who has ever tried to make two different vendor's IPSEC VPNs work together knows what I'm talking about.

So what exactly do you guys want? Site to Site IPSEC? Windows IPSEC client support? Because most IPSEC setups (like monowall) don't support that today.

Which other IPSEC clients should we support?

Is the only issue with OpenVPN support that it isn't available on the iPhone? In what application does the iPhone require vpn support? I'm guessing HTTPS isn't sufficient for these applications?

Would an Untangle OS X openvpn client setup (like we do for windows) help things?

As for PPTP, I don't see that on the roadmap for Untangle, but I'm just one guy here. It's yesterday's technology that didn't provide what it said it should long ago.

Not trying to fan the flames, I'm genuinely curious.

Yes, we are looking for site-to-site for IPSEC. This way Untangle can be integrated into an existing infrastructure. For example, I have a client that we just finished replacing 6 sites with Untangle. This took FOREVER because Untangle doesn't support IPSEC. It was so complex running two different VPN networks (for the transition) I don't believe that most of your client base could even configure it to work. It was a pain, took 10x as long as it should, and was very expensive.

You NEED IPSEC so that Untangle can play with others. Especially if you are transitioning multiple sites to Untangle.

Yes, an Untangle OS X openvpn client setup would help.
10-01-2009, 04:32 PM
itcinc

IPSEC opinions

Quote:

Originally Posted by mrunkel

In all seriousness, we have researched IPSEC support and are interested in doing it, it's just really hard to implement in a "plug and play" method. Anyone who has ever tried to make two different vendor's IPSEC VPNs work together knows what I'm talking about.

So what exactly do you guys want? Site to Site IPSEC? Windows IPSEC client support? Because most IPSEC setups (like monowall) don't support that today.

What my clients need primarily is a site-to-site implementation. I need to be able to replace a Sonicwall or Cisco VPN between two sites without the need to replace all VPN routers that a company owns. Whether it is a new office, replacing a failed device, an upgrade or a trial - the installation needs to minimally disrupt the client operations. This would also provide many more options to install UT by reducing the operational impact and risk involved. It would be easy to say "lets install UT in one office as trial and see how you like it".

Having a Windows client would be helpful for the road warriors and access from home. Mac and Linux client support would also be nice.

You asked for it....and now you have my :twocents:...don't spend it all in one place!
10-01-2009, 05:31 PM
sky-knight

Quote:

Originally Posted by ntldr

I know this is off-topic, but I sincerely hope you guys are talking about SMB and not Enterprise/Government.

I'll send you my locked BB Pearl and you send me your locked iPhone. Let's see how long it takes the other to peak at the file system.

Heck, our Dear Leader uses a BB. :rolleyes:

I can see the file system on my windows mobile out of the box! :P And that's the point.

As for the iPhone VPN support... I wonder how much of that can be resolved with a working RAP.
10-02-2009, 04:22 AM
richardwang5000

i personally need IPSEC site-to-site for our fiance software that uses an IPSEC tunnel to do credit cards and for people to pay their taxes :]
10-02-2009, 06:52 AM
trans_lux

We just need IPSEC that will work with the native clients built into the OS' it just makes life so much easier. No 3rd party app to install.

Show 40 post(s) from this thread on one page