VPNs Illustrated: Tunnels, VPNS, and IPsec -- A Book Review

April 17th, 2006 by Geoff Baker in

Practical, well-documented advice that can help secure your system.
Your rating: None

Title: VPNs Illustrated: Tunnels, VPNs, and IPsec

Author: Jon C. Snader

Publisher: Addison-Wesley

ISBN: 0-321-24544-x

Price: $49.95

Buy Now!

VPNs Illustrated: Tunnels, VPNS, and IPsec offers a clear and concise evaluation of the technology that allows private networks to extend through insecure channels. Overall, the purpose of this book is to inform readers of the benefits a VPN can offer. This is done through examples, diagrams and source code analysis. As a reference guide, the material does a good job of informing the reader about private networking over a public channel.

This book is not, however, a guide to configuring and installing a virtual private network (VPN), nor is it for beginners. If you are looking for a basic introduction to VPNs, you would be better served and could save some money by researching on-line publications. This book does provide a simple introduction, but the introduction is only a few pages long. This leaves the rest of the book to more advanced topics.

VPNs Illustrated is a solid reference guide that benefits students and engineers who want to gain a better knowledge of the design behind daemon- and kernel-based secure networking. It provides more than an analysis of VPNs and tunnels; there also are sections on TCP/IP, Cryptography and Secure Sockets Layer. This additional information is useful as references in other works or, as is the case here, to help explain and outline how a secure network can be created over an insecure public channel.

Snader provides the information through packet analysis, code samples and definitions taken from RFCs. This method allows the user to see a real-world implementation of the theory and get visual verification of the protected data path.

VPNs Illustrated also explains the methods behind the encryption process, through insight into the mathematics and the latest methods for bypassing the encryption. This explanation aided me in selecting a different encryption method for my own VPN, which improved security and performance on my system.

Many books in this field include only code snippets to explain their points. VPNs Illustrated does an excellent job of explaining by providing beneficial examples and interpretations. For example, the author provides code for a VPN encapsulated in an SSH tunnel. Currently, I am experimenting with this technique on my own server, as it provides a lightweight, easy-to-manage solution.

Snader does not investigate VPNs on Windows and instead focuses exclusively on BSD/Linux. Many IT departments would benefit from further study on how the various VPN tools discussed in the book interoperate with Windows.

Geoff Baker is a software developer at a telecommunications design firm. He currently is enrolled at the University of Saskatchewan, working towards a Masters in Electrical Engineering.

__________________________

Special Magazine Offer -- 2 Free Trial Issues!
Receive 2 free trial issues of Linux Journal as well as instant online access to current and past issues. There's NO RISK and NO OBLIGATION to buy. CLICK HERE for offer

Linux Journal: delivering readers the advice and inspiration they need to get the most out of their Linux systems since 1994.

Sorry, offer available in the US only. International orders, click here.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

OpenVPN

On April 18th, 2006 Anonymous (not verified) says:

OpenVPN certainly deserves a mention if it's not in the book: http://www.openvpn.net

especially the udp mode of

On May 12th, 2006 Anonymous (not verified) says:

especially the udp mode of operation of openvpn

Post new comment

Please note that comments may not appear immediately, so there is no need to repost your comment.
The content of this field is kept private and will not be shown publicly.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <pre> <ul> <ol> <li> <dl> <dt> <dd> <i> <b>
  • Lines and paragraphs break automatically.

More information about formatting options

Featured Videos

Linux Journal Live - Oct 9, 2008

October 9th, 2008 by Shawn Powers

The October 9, 2008 edition of Linux Journal Live! Associate Editor, Shawn Powers, and Kyle Rankin, "Hack and /" columnist and author of Knoppix Hacks, Linux Multimedia Hacks, Knoppix Pocket Reference and others, discuss Linux distributions.

Linux Journal Live - Oct 2, 2008

October 3rd, 2008 by Shawn Powers

The October 2, 2008 edition of Linux Journal Live! Associate Editor, Shawn Powers, and Steven Evatt, Online Development manager for The Houston Chronicle discuss surviving disaster with Linux.

See more Linux Journal Videos

From the Magazine

November 2008, #175

There aren't many numbers that put the US national debt to shame, but here's one: 1,100,000,000,000,000. What's that? That's how many floating-point operations per second the Roadrunner supercomputer at Las Alamos can perform. That's about 100 FLOPS per dollar of US debt (unfortunately, the debt is winning the second derivative race). Read the article about Roadrunner in this month's High Performance Computing issue of LJ.

Along with that, find out how to program the Cell processor and how to use CUDA with your NVIDIA GPU. Also in this issue: Mr HandS (aka Kyle Rankin) gives us a few tips on using Compiz, Chef Marcel shows you how to get blogging off your plate quicker, Mick Bauer talks about Samba security, Dan Sawyer interviews Cory Doctrow and Doc talks about how information technology can affect democracy and fix the national debt (just kidding about that last part). That and more for your reading pleasure in this month's Linux Journal.

Read this issue