Cisco AnyConnect is pretty much standard IPsec, as far as I'm aware, so with some work it should be able to be interoperable with racoon or strongSwan, I would think, though I have not tried this.
At the office we do use a strongSwan based server with a Mac OS X client, the latter of which purports to run in a "Cisco IPsec" mode. It works. The client sucks, but that's a separate issue...
Otoh recent versions of Cisco servers push polices on Windows clients that require the Windows boxes to confirm that only one user is logged in. Not sure if OpenConnect deals with that crap?
Cisco hardware still supports IPSEC but that's reached using the classic "Cisco VPN Client."
If you want some real (and probably more insecure) fun:
You just need ssh + Python on the remote end firewall (or port forwarded device).
No udp, but it does a hell of a job in a pinch.
I don't have to think about the connection set-up. It has extra bits to do dns, and you can specify networks to skip or add to forward, or let it figure out the forwarding auto-magically. It is the next best thing to being there for me lately. Give a remote vnc a spin via that thing, you will be impressed.
I have not tried that one - reverse the conection and traverse it. I have used it to tunnel all trafic by re-pointing hosts to use regular old ip masq.
What it ends up doing is running a Python script on the far end, so I suppose you could hack it, but I have not tried your use case. I can see why that would be useful though!
They've got an AnyConnect-compatible VPN server too. I'd like to try it out but I have no use for it right now, because we already bought a Cisco ASA. Maybe someday if someone needs a "VPN in teh cloud" or something...
I did play around with this one for a bit, but found it stagnated (sadly). Nice for pooping up a peer to peer vpn between many hosts. It did seem to suffer some issues after the tunnel was running for a bit though, so I quit using it:
I think I recall looking at n2n, but couldn't get it to work the way I expected.
I had some hopes of using it for work. I might try to review it again... I expect I didn't quite get it right the first time, as I didn't really go into it too deeply.
They've got an AnyConnect-compatible VPN server too. I'd like to try
Ahh yes, http://www.infradead.org/ocserv/
I knew there was some techy thing I wanted to ask you about and this was it. We of course needz it in teh cloud, lulz.
The Cisco IPsec client that ships with OS X 10.6 is so bloody unstable it has been giving me fits, and I don't think we'll be on Amazon VPC soon enough, so ocserv might be a good alternative.
nice how he says that ximian was the toad sitting under the suse tree making it starve and how removing it gave life back to suse...
Nice to see SuSE recovering; they were thriving before the Ximian takeover.
SCO vs. IBM has been officially reopened.
[ http://www.groklaw.net/article.php?story=2013061516065416 ]
Can you believe this? SCO is like a villain from a really bad b-movie that just refuses to die.
Good / sad - to see that PJ is still covering it.
laptop. Can't decide if I like Cinnamon or MATE better, MATE is rumored to take up less resources but I like
things about Cinnamon.