[AusNOG] Client VPN Solutions

Bradley Amm brad at bradleyamm.id.au
Mon Sep 28 15:00:22 EST 2020

We use SophosSSL VPN and for Windows 10 Enterprise Direct Access

Sophos are working on their SophosConnect client which looks promising but lacks some features like the ability to not have the user shutdown the client etc.
It works with MFA such as Duo for example

From: AusNOG <ausnog-bounces at lists.ausnog.net> On Behalf Of Burt Mascareigne
Sent: Monday, 28 September 2020 12:48 PM
To: John Cenile <jcenile1983 at gmail.com>; ausnog at lists.ausnog.net
Subject: Re: [AusNOG] Client VPN Solutions


The agent uses a generic OpenSSL client (it’s modified for SOPHOS) but you can, if you  want use the standard OpenSSL one.

The 2FA is something I prefer, but can trick some clients, which maybe a downer, the 2FA 6 digit get’s appended to the password.  Which is great, as the password transmitted every time is unique, but people are use to be “prompted” a 2FA code.


From: AusNOG <ausnog-bounces at lists.ausnog.net<mailto:ausnog-bounces at lists.ausnog.net>> On Behalf Of John Cenile
Sent: Monday, September 28, 2020 2:38 PM
To: ausnog at lists.ausnog.net<mailto:ausnog at lists.ausnog.net>
Subject: [AusNOG] Client VPN Solutions

G'day Noggers,

I was hoping to get some recommendations on VPN solutions people out there are using.

Currently we're using a Cisco ASA with the AnyConnect client, however we have found it to be quite limiting in some of the things we want to do (such as built in multifactor, restricting resources to groups, and the throughput of the device itself).

Our main requirements are:

  *   Self hosted / on-premise appliance
  *   Multifactor support (preferably Google Authenticator)
  *   Windows, Mac, and iPhone clients

I'm also looking at the Fortinet FortiClient software, but it looks very similar to AnyConnect, so I don't have high hopes for it. I'm also looking into the Business OpenVPN product.

Any other suggestions / recommendations would be great.

John Cenile
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20200928/a31fbe21/attachment.html>

More information about the AusNOG mailing list