> way to go before they become mainstream.. When evaluating these products,
> look for standards compliance (ISAKMP/OAKLEY, SKIP IPSEC, DES, RSA,
etc.)
OSI and Ada are standards too.
PPTP may not be the greatest technical, security and performance solution
but:
1) free
2) integrates cleanly into MS environments (95% of the desktop, probably
99% of road warriors)
3) free
4) no extra hardware
5) free
6) transports IPX and native NETBEUI (broadcasts over the Internet, scary)
6) free
7) lower administrative costs (no key mgt, uses existing user database, no
extra hardware,
uses existing NT RAS administrative model)
8) did I say free?
Oh yes it has negatives like:
1) weak authentication
2) slower
3) bitch to install and figure out routing
4) GRE doesn't pass through all firewalls
5) precious little debug information
But oh well.
PPTP: Yet another Microsoft standard that sends IPSEC, etc.... back
to the ivory towers.
dreez
|
|
