<html><head><meta http-equiv="content-type" content="text/html; charset=utf-8"></head><body dir="auto">I might recommend OpenVPN AS. They are license centric on seats but 3 seats come with the free appliance and fairly straight forward interface all while offering HA configuration so you may have many appliances as a fallback plus google authenticator and at least one other I don’t recall off hand. LDAP auth is also there.<div><br></div><div>If anything give the free appliance a run through in a VM you might be happy you did.</div><div><br></div><div>Good luck </div><div><br></div><div><a href="https://openvpn.net/vpn-server/">https://openvpn.net/vpn-server/</a><br><br><div dir="ltr"><div><span style="background-color: rgba(255, 255, 255, 0);">-- </span></div><div><span style="background-color: rgba(255, 255, 255, 0);"> J. Hellenthal</span></div><div><span style="background-color: rgba(255, 255, 255, 0);"><br></span></div><span style="background-color: rgba(255, 255, 255, 0);">The fact that there's a highway to Hell but only a stairway to Heaven says a lot about anticipated traffic volume.</span></div><div dir="ltr"><br><blockquote type="cite">On Sep 28, 2020, at 03:09, Dmitry Konchanin <dmitry.konchanin@dtsanz.com> wrote:<br><br></blockquote></div><blockquote type="cite"><div dir="ltr">
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<p>Forticlient can do multifactor to some extend. There are pretty
expensive "branded" token based option, built-in email-to-sms and
ability to use basically any time of MFA via Radius. And no any
additional costs/licenses, all comes with a box. (except tokens).</p>
<p>It's still probably less flexible than dedicated VPN devices
(like Pulse), but if it fits requirements then for sure price
effective. <br>
</p>
<div class="moz-signature">Kind regards,
<br>
Dmitry Konchanin <br>
<font style="color:grey; font-size:13px;"></font><br>
<br>
</div>
<div class="moz-cite-prefix">On 28/09/2020 5:37 pm, John Cenile
wrote:<br>
</div>
<blockquote type="cite" cite="mid:CAEhSU45cP-TrSF_JxZX3XyuCyu3J8umhgGL4oVT_qv3T78cH4Q@mail.gmail.com">
<meta http-equiv="content-type" content="text/html; charset=UTF-8">
<div dir="ltr">G'day Noggers,
<div><br>
</div>
<div>I was hoping to get some recommendations on VPN solutions
people out there are using.</div>
<div><br>
</div>
<div>Currently we're using a Cisco ASA with the AnyConnect
client, however we have found it to be quite limiting in some
of the things we want to do (such as built in multifactor,
restricting resources to groups, and the throughput of the
device itself).</div>
<div><br>
</div>
<div>Our main requirements are:</div>
<div>
<ul>
<li>Self hosted / on-premise appliance</li>
<li>Multifactor support (preferably Google Authenticator)</li>
<li>Windows, Mac, and iPhone clients</li>
</ul>
<div><br>
</div>
</div>
<div>I'm also looking at the Fortinet FortiClient software, but
it looks very similar to AnyConnect, so I don't have high
hopes for it. I'm also looking into the Business OpenVPN
product.</div>
<div><br>
</div>
<div>Any other suggestions / recommendations would be great.</div>
<div><br>
</div>
<div>
<div style="color:rgb(136,136,136)"><font color="#999999">John
Cenile</font></div>
<div style="color:rgb(136,136,136)"><a href="https://github.com/john30" target="_blank" moz-do-not-send="true">Github</a></div>
<div style="color:rgb(136,136,136)"><a href="https://twitter.com/cenilejohn" target="_blank" moz-do-not-send="true">Twitter</a></div>
</div>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<pre class="moz-quote-pre" wrap="">_______________________________________________
AusNOG mailing list
<a class="moz-txt-link-abbreviated" href="mailto:AusNOG@lists.ausnog.net">AusNOG@lists.ausnog.net</a>
<a class="moz-txt-link-freetext" href="http://lists.ausnog.net/mailman/listinfo/ausnog">http://lists.ausnog.net/mailman/listinfo/ausnog</a>
</pre>
</blockquote>
<span>_______________________________________________</span><br><span>AusNOG mailing list</span><br><span>AusNOG@lists.ausnog.net</span><br><span>http://lists.ausnog.net/mailman/listinfo/ausnog</span><br></div></blockquote></div></body></html>