[AusNOG] Client VPN Solutions

Burt Mascareigne Burt at stormnetwork.com.au
Mon Sep 28 14:47:30 EST 2020


The agent uses a generic OpenSSL client (it’s modified for SOPHOS) but you can, if you  want use the standard OpenSSL one.

The 2FA is something I prefer, but can trick some clients, which maybe a downer, the 2FA 6 digit get’s appended to the password.  Which is great, as the password transmitted every time is unique, but people are use to be “prompted” a 2FA code.


From: AusNOG <ausnog-bounces at lists.ausnog.net> On Behalf Of John Cenile
Sent: Monday, September 28, 2020 2:38 PM
To: ausnog at lists.ausnog.net
Subject: [AusNOG] Client VPN Solutions

G'day Noggers,

I was hoping to get some recommendations on VPN solutions people out there are using.

Currently we're using a Cisco ASA with the AnyConnect client, however we have found it to be quite limiting in some of the things we want to do (such as built in multifactor, restricting resources to groups, and the throughput of the device itself).

Our main requirements are:

  *   Self hosted / on-premise appliance
  *   Multifactor support (preferably Google Authenticator)
  *   Windows, Mac, and iPhone clients

I'm also looking at the Fortinet FortiClient software, but it looks very similar to AnyConnect, so I don't have high hopes for it. I'm also looking into the Business OpenVPN product.

Any other suggestions / recommendations would be great.

John Cenile
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20200928/484c6873/attachment.html>

More information about the AusNOG mailing list