Educause Security Discussion mailing list archives
Re: VPN Concentrator replacement
From: Brian Epstein <bepstein () IAS EDU>
Date: Wed, 8 May 2019 00:42:32 -0400
We were using Pulse Secure (aka JunOS Pulse) but found it to require too much Java and was starting to become difficult to support. After interviewing numerous vendors and solutions, we ended up settling on a commercial license with OpenVPN. We run their OpenVPNAS servers and have it set up with Duo. There were a few hiccups along the way, but we found that support and the developers were very helpful and resolved our issues quickly. The price is very affordable, and it works cross platform (Windows, Mac, Linux, Chromebook, iOS, and Android). Our users have given a lot of positive feedback about the speed and reliability of they product. It is really flexible for our environment. It is an SSL VPN, so not IPsec. But it fits what we need. Thanks, ep -- Brian Epstein <bepstein () ias edu> +1 609-734-8179 Manager, Network and Security Institute for Advanced Study Key fingerprint = A6F3 9F5A 26C5 5847 79ED C34C C0E5 244A 55CA 2B78 On Tue, May 7, 2019, 17:01 Akey, Michael <Mike.Akey () oregonstate edu> wrote:
Hello Security list, At OSU we're looking to replace our aging Cisco ASA devices with a new VPN solution. We wanted to know what other higher-ed institutions are using these days with regards to VPN for end users (not site-to-site/cloud VPN). Our current solution was very over-built for how it was ultimately used and we only have about 100-300 concurrent users on any given day. Any solution we go with must support Duo 2fa - though I'm seeing that nearly any VPN service is supported by way of a RADIUS shim or custom login pages for SSL web VPNs. If you've recently moved to a new VPN solution and are willing to briefly share your experiences with certain vendors/products I would appreciate it. If you know of a good article or existing survey of what other higher-ed institutions use for client VPNs I'd love that too. Thank you, Mike Akey Systems Engineer, IT Infrastructure University Information and Technology | Oregon State University 541-737-4948 | uit.oregonstate.edu
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
Current thread:
- VPN Concentrator replacement Akey, Michael (May 07)
- Re: VPN Concentrator replacement Telfer, Will (May 07)
- Re: VPN Concentrator replacement Francisco Chavez (May 07)
- Re: VPN Concentrator replacement Bandy, John (May 08)
- Re: VPN Concentrator replacement Pardonek, Jim (May 08)
- Re: VPN Concentrator replacement King, Ronald A. (May 08)
- Re: VPN Concentrator replacement Francisco Chavez (May 07)
- Re: VPN Concentrator replacement Telfer, Will (May 07)
- Re: VPN Concentrator replacement Brian Epstein (May 07)
- Re: VPN Concentrator replacement Mike Wiseman (May 08)
- Re: VPN Concentrator replacement Dugan, Darin D [ITSYS] (May 08)