Experimental evaluations of open-source Linux-based VPN solutions

Proceedings. 13th International Conference on Computer Communications and Networks (IEEE Cat. No.04EX969) Pub Date : 2004-10-11 DOI:10.1109/ICCCN.2004.1401619

Shashank Khanvilkar, A. Khokhar

{"title":"Experimental evaluations of open-source Linux-based VPN solutions","authors":"Shashank Khanvilkar, A. Khokhar","doi":"10.1109/ICCCN.2004.1401619","DOIUrl":null,"url":null,"abstract":"Virtual private networks (VPNs) provide a low-cost alternative to leased lines and as such, are becoming increasingly popular among commercial and defense organizations for providing vital inter-office connectivity. Several commercial and open-source VPN products are now available that mainly differ in their capabilities to provide safe and secure services. In this paper, we study fifteen popular open-source Linux-based VPN solutions (OSLVs) and compare them with respect to network performances (bandwidth, delay and latency/jitter), supported features & functionalities (algorithm plug-ins and routing) and operational concerns (security and scalability). Experiments suggest that there is no single OSLV that excels in all the considered aspects and a combination of different solutions and/or tradeoff among desired characteristics may be required to deliver an optimal performance. Also network performance results suggest that OSLVs using UDP tunnels introduce 50% lower overhead, utilize 80% higher bandwidth and have 40-60% lower latency/jitter than those based on TCP","PeriodicalId":229045,"journal":{"name":"Proceedings. 13th International Conference on Computer Communications and Networks (IEEE Cat. No.04EX969)","volume":"243 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2004-10-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"12","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings. 13th International Conference on Computer Communications and Networks (IEEE Cat. No.04EX969)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCCN.2004.1401619","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 12

Abstract

Virtual private networks (VPNs) provide a low-cost alternative to leased lines and as such, are becoming increasingly popular among commercial and defense organizations for providing vital inter-office connectivity. Several commercial and open-source VPN products are now available that mainly differ in their capabilities to provide safe and secure services. In this paper, we study fifteen popular open-source Linux-based VPN solutions (OSLVs) and compare them with respect to network performances (bandwidth, delay and latency/jitter), supported features & functionalities (algorithm plug-ins and routing) and operational concerns (security and scalability). Experiments suggest that there is no single OSLV that excels in all the considered aspects and a combination of different solutions and/or tradeoff among desired characteristics may be required to deliver an optimal performance. Also network performance results suggest that OSLVs using UDP tunnels introduce 50% lower overhead, utilize 80% higher bandwidth and have 40-60% lower latency/jitter than those based on TCP

查看原文本刊更多论文

基于linux的开源VPN解决方案的实验评估

虚拟专用网络(vpn)提供了租用线路的低成本替代方案，因此在商业和国防组织中越来越受欢迎，用于提供重要的办公室间连接。现在有几个商业的和开源的VPN产品，它们在提供安全服务的能力上有很大的不同。在本文中，我们研究了15个流行的基于linux的开源VPN解决方案(oslv)，并对它们在网络性能(带宽、延迟和延迟/抖动)、支持的特性和功能(算法插件和路由)以及操作问题(安全性和可扩展性)方面进行了比较。实验表明，没有单一的OSLV在所有考虑的方面都表现出色，并且可能需要不同解决方案的组合和/或期望特性之间的权衡来交付最佳性能。此外，网络性能结果表明，使用UDP隧道的oslv比基于TCP的隧道引入的开销低50%，利用的带宽高80%，延迟/抖动低40-60%

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings. 13th International Conference on Computer Communications and Networks (IEEE Cat. No.04EX969)

自引率

0.00%

发文量