[Asterisk-Dev] Cross Platform UDP-VPN based encryption
Mathew Frank
mathew at macmillanweir.com
Mon Apr 19 15:18:58 MST 2004
> Let us move this conversation to:::
>
> encrypting the entire contents of all iax2 packets.
http://openvpn.sourceforge.net/
This project is not "in the guts" of an O/S. Its UDP packet based, and
uses SSL/TLS libs.
- public key encryption
- tunnel networks whose public endpoints are dynamic such as DHCP or
dial-in clients
- tunnel networks over NAT
- runs on Linux, Solaris, OpenBSD, FreeBSD, NetBSD, Mac OS X, and Windows
2000/XP
- In general, a tunnel can be created and configured with a single command
(and without any required configuration files)
- OpenVPN is designed to work well with scripts and higher level
applications that build dynamic, on-demand VPN connections. For these
applications, OpenVPN provides various options for controlling inactivity
disconnects, automated firewall traversal, and dynamic IP addresses
- OpenVPN is fast. Running Redhat 7.2 on a Pentium II 266mhz machine, using
TLS-based session authentication, the Blowfish cipher, SHA1 authentication
for the tunnel data, and tunneling an FTP session with large, precompressed
files, OpenVPN achieved a send/receive transfer rate of 1.455 megabytes per
second of CPU time (combined kernel and user time).
Its, fast, lightweight, UDP, and will encrypt the entire contents of iax2
packets.
Comments?
Cheers,
Mathew
More information about the asterisk-dev
mailing list