File: VPN.html

package info (click to toggle)
opensc 0.11.1-2etch2
  • links: PTS
  • area: main
  • in suites: etch
  • size: 7,284 kB
  • ctags: 7,257
  • sloc: ansic: 69,499; sh: 9,480; xml: 4,191; makefile: 346; lex: 92; perl: 25
file content (22 lines) | stat: -rw-r--r-- 2,461 bytes parent folder | download | duplicates (2) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
 
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:html="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title>VPN - OpenSC - Trac</title><style type="text/css">
           @import url(trac.css);
          </style></head><body><div class="wikipage">
    <div id="searchable"><h1>Virtual Private Networks</h1>
<p>
The common standard for Virtual Private Networks is IPSEC. For linux there are four implemtations of this:
</p>
<ul><li><a class="ext-link" title="http://www.freeswan.org/" href="http://www.freeswan.org/" shape="rect">FreeS/WAN</a> has no support for smart cards, unless patched with the X.509 patch.
That patch comes with documentation how to use smart cards. FreeS/WAN project has ended, you might want to
use Openswan or strongSwan instead.
</li><li><a class="ext-link" title="http://www.openswan.org/" href="http://www.openswan.org/" shape="rect">Openswan</a> supports OpenSC natively and must be compiled with OpenSC support.
If that is done, you can find more details in the Openswan documentation:
<a class="ext-link" title="http://www.openswan.org/docs/local/README.x509" href="http://www.openswan.org/docs/local/README.x509" shape="rect">README.x509</a> has chapter 8  about Smartcard support.
</li><li><a class="ext-link" title="http://www.strongswan.org/" href="http://www.strongswan.org/" shape="rect">strongSwan</a> supports smart card authentication using PKCS#11 API. It should
work fine with opensc-pkcs11.so, please report your results. Detailed documentation is part of the 
<a class="ext-link" title="http://www.strongswan.org/docs/install.htm#chapter_2.3" href="http://www.strongswan.org/docs/install.htm#chapter_2.3" shape="rect">strongSwan documentation</a>.
</li><li><a class="ext-link" title="http://ipsec-tools.sourceforge.net/" href="http://ipsec-tools.sourceforge.net/" shape="rect">Racoon</a> does currently not support smart card authentication.
</li><li><a class="ext-link" title="http://www.openvpn.net/" href="http://www.openvpn.net/" shape="rect">OpenVPN</a> does support PKCS#11 in current devel version. Successfuly 
tested OpenSC with OpenVPN 2.1beta.7. They have a howto with details on it at <a class="ext-link" title="http://openvpn.net/howto.html" href="http://openvpn.net/howto.html" shape="rect">http://openvpn.net/howto.html</a>
</li></ul></div>
   </div><div class="footer"><hr></hr><p><a href="index.html">Back to Index</a></p></div></body></html>