USENIX Technical Program - Abstract - 13th Systems Administration Conference

USENIX Technical Program - Abstract - 13th Systems Administration Conference - LISA '99

Moat: A Virtual Private Network Appliance and Services Platform

John S. Denker, Steven M. Bellovin, AT&T Laboratories; Hugh Daniel, FreeS/WAN Project; Nancy L. Mintz, Tom Killian, and Mark A. Plotnick, AT&T Laboratories

Abstract

We have implemented a system for virtual private networking, with special attention to the needs of telecommuters. In particular, we used off-the-shelf hardware and open-source software to create a platform to provide IP security and other services for in-home networks.

Our experience has taught us a number of things about the scalability of the FreeS/WAN IPsec system, about the widespread mis-handling of path-MTU discovery on the internet, and about the implications of tunnels on the basic architecture of the network.

Additional Keywords: VPN, Linux, Residential Gateway, MSS, fragmentation.

View the full text of this paper in HTML form, PDF form, and PostScript form.
If you need the latest Adobe Acrobat Reader, you can download it from Adobe's site.
To become a USENIX Member, please see our Membership Information.

Need help? Use our Contacts page.

Last changed: 13 Feb 2002 ml

Technical Program

Conference index

USENIX home