Table of contents

11.2 Useful Information

    Table of contents
    to the older version or return to version archive.

    Combined revision comparison

    Comparing version 01:18, 26 Jan 2024 by puripuri2100 with version 22:48, 27 Jan 2024 by puripuri2100.

    ...

    1. Connect to the Virtual Hub from VPN Client in monitoring mode. This will enable the VPN Client's Virtual Network Adapter to capture all packets going through the Virtual Hub. Now you can use snort or some other IDS software on the Virtual Network Adapter to view the packets going through the Virtual Hub. For more information please refer to 1.6.10 Monitoring Mode Session1.6 VPN Communication Details and 4.4.17 Selecting the Connection Mode4.4 Making Connection to VPN Server. However, this method only allows for the use of a software based IDS.
    2. By using the method described in section 3.6.8 Outputting all Communication Data in the Virtual Hub to the Network Adapter3.6 Local Bridges, you can out all of the packets going through the Virtual Hub from the LAN port of the physical network adapter connected to the computer running VPN Server. This method will allow you to use hardware based IDS to view all of the packets going through a Virtual Hub.

    ...

    As described in 3.5.11 Limiting Connections with the IP Access Control List3.5 Virtual Hub Security Features, you can limit computer access not only username but also physical IP address.

    ...

    When connecting to VPN Server, the encryption algorithm with SSL encryption session uses RC4-MD5 by default. You can change the encryption algorithm which has longer bit length than that. In detail, see 3.3.15 Selecting Encryption Algorithms for use in SSL Transmission3.3 VPN Server Administration.

    ...

    The detail about using tagged VLAN packet on virtual Hub and localbridge connection function when using VPN Server and VPN Bridge, see 3.6.7 Tagged VLAN Frames3.6 Local Bridges.

    ...

    The MAC address of virtual network adapter on VPN Client can be changed. The way of changing, see "Changing Advanced Setting" of 4.3.2 Virtual Network Adapter Creation and Setup4.3 Virtual Network Adapter. you can also change the setting with NicSetSetting of vpncmd command.

    ...

    The virtual network adapter of VPN Client reports a communication speed as 100Mbps to windows. This value can be changed at will. In detail, see "Changing Advanced Setting" of 4.3.2 Virtual Network Adapter Creation and Setup4.3 Virtual Network Adapter.

    ...

    When connecting to VPN Server with VPN Client, you can enter a password with password authentication not to save one. In detail, see "Information Required for Standard Password Authentication and RADIUS or NT Domain Authentication" of 4.4.7 User Authentication Setting4.4 Making Connection to VPN Server.

    ...

    Other changes:

    1. /body/ol/li/a/@href: "mks://localhost/4-docs/1-manual/1/1.6""mks://localhost/4-docs/1-manual/1/1.6#1.6.10_Monitoring_Mode_Session"
    2. /body/ol/li/a/@title: "4-docs/1-manual/1/1.6""1.6.10 Monitoring Mode Session"
    3. /body/ol/li/a[2]/@href: "mks://localhost/4-docs/1-manual/4/4.4""mks://localhost/4-docs/1-manual/4/4.4#4.4.17_Selecting_the_Connection_Mode"
    4. /body/ol/li/a[2]/@title: "4-docs/1-manual/4/4.4""4.4.17 Selecting the Connection Mode"
    5. /body/ol/li[2]/a/@href: "mks://localhost/4-docs/1-manual/3/3.6""mks://localhost/4-docs/1-manual/3/3.6#3.6.8_Outputting_all_Communication_Data_in_the_Virtual_Hub_to_the_Network_Adapter"
    6. /body/ol/li[2]/a/@title: "4-docs/1-manual/3/3.6""3.6.8 Outputting all Communication Data in the Virtual Hub to the Network Adapter"
    7. /body/p[25]/a/@href: "mks://localhost/4-docs/1-manual/3/3.5""mks://localhost/4-docs/1-manual/3/3.5#3.5.11_Limiting_Connections_with_the_IP_Access_Control_List"
    8. /body/p[25]/a/@title: "4-docs/1-manual/3/3.5""3.5.11 Limiting Connections with the IP Access Control List"
    9. /body/p[26]/a/@href: "mks://localhost/4-docs/1-manual/3/3.3""mks://localhost/4-docs/1-manual/3/3.3#3.3.15_Selecting_Encryption_Algorithms_for_use_in_SSL_Transmission"
    10. /body/p[26]/a/@title: "4-docs/1-manual/3/3.3""3.3.15 Selecting Encryption Algorithms for use in SSL Transmission"
    11. /body/p[27]/a/@href: "mks://localhost/4-docs/1-manual/3/3.6""mks://localhost/4-docs/1-manual/3/3.6#3.6.7_Tagged_VLAN_Frames"
    12. /body/p[27]/a/@title: "4-docs/1-manual/3/3.6""3.6.7 Tagged VLAN Frames"
    13. /body/p[28]/a/@href: "mks://localhost/4-docs/1-manual/4/4.3""mks://localhost/4-docs/1-manual/4/4.3#4.3.2_Virtual_Network_Adapter_Creation_and_Setup"
    14. /body/p[28]/a/@title: "4-docs/1-manual/4/4.3""4.3.2 Virtual Network Adapter Creation and Setup"
    15. /body/p[29]/a/@href: "mks://localhost/4-docs/1-manual/4/4.3""mks://localhost/4-docs/1-manual/4/4.3#4.3.2_Virtual_Network_Adapter_Creation_and_Setup"
    16. /body/p[29]/a/@title: "4-docs/1-manual/4/4.3""4.3.2 Virtual Network Adapter Creation and Setup"
    17. /body/p[30]/a/@href: "mks://localhost/4-docs/1-manual/4/4.4""mks://localhost/4-docs/1-manual/4/4.4#4.4.7_User_Authentication_Setting"
    18. /body/p[30]/a/@title: "4-docs/1-manual/4/4.4""4.4.7 User Authentication Setting"

    Version from 01:18, 26 Jan 2024

    This revision modified by puripuri2100 (Ban)

    ...

    1. Connect to the Virtual Hub from VPN Client in monitoring mode. This will enable the VPN Client's Virtual Network Adapter to capture all packets going through the Virtual Hub. Now you can use snort or some other IDS software on the Virtual Network Adapter to view the packets going through the Virtual Hub. For more information please refer to 1.6 VPN Communication Details and 4.4 Making Connection to VPN Server. However, this method only allows for the use of a software based IDS.
    2. By using the method described in section 3.6 Local Bridges, you can out all of the packets going through the Virtual Hub from the LAN port of the physical network adapter connected to the computer running VPN Server. This method will allow you to use hardware based IDS to view all of the packets going through a Virtual Hub.

    ...

    As described in 3.5 Virtual Hub Security Features, you can limit computer access not only username but also physical IP address.

    ...

    When connecting to VPN Server, the encryption algorithm with SSL encryption session uses RC4-MD5 by default. You can change the encryption algorithm which has longer bit length than that. In detail, see 3.3 VPN Server Administration.

    ...

    The detail about using tagged VLAN packet on virtual Hub and localbridge connection function when using VPN Server and VPN Bridge, see 3.6 Local Bridges.

    ...

    The MAC address of virtual network adapter on VPN Client can be changed. The way of changing, see "Changing Advanced Setting" of 4.3 Virtual Network Adapter. you can also change the setting with NicSetSetting of vpncmd command.

    ...

    The virtual network adapter of VPN Client reports a communication speed as 100Mbps to windows. This value can be changed at will. In detail, see "Changing Advanced Setting" of 4.3 Virtual Network Adapter.

    ...

    When connecting to VPN Server with VPN Client, you can enter a password with password authentication not to save one. In detail, see "Information Required for Standard Password Authentication and RADIUS or NT Domain Authentication" of 4.4 Making Connection to VPN Server.

    ...

    Current version

    This revision modified by puripuri2100 (Ban)

    ...

    1. Connect to the Virtual Hub from VPN Client in monitoring mode. This will enable the VPN Client's Virtual Network Adapter to capture all packets going through the Virtual Hub. Now you can use snort or some other IDS software on the Virtual Network Adapter to view the packets going through the Virtual Hub. For more information please refer to 1.6.10 Monitoring Mode Session and 4.4.17 Selecting the Connection Mode. However, this method only allows for the use of a software based IDS.
    2. By using the method described in section 3.6.8 Outputting all Communication Data in the Virtual Hub to the Network Adapter, you can out all of the packets going through the Virtual Hub from the LAN port of the physical network adapter connected to the computer running VPN Server. This method will allow you to use hardware based IDS to view all of the packets going through a Virtual Hub.

    ...

    As described in 3.5.11 Limiting Connections with the IP Access Control List, you can limit computer access not only username but also physical IP address.

    ...

    When connecting to VPN Server, the encryption algorithm with SSL encryption session uses RC4-MD5 by default. You can change the encryption algorithm which has longer bit length than that. In detail, see 3.3.15 Selecting Encryption Algorithms for use in SSL Transmission.

    ...

    The detail about using tagged VLAN packet on virtual Hub and localbridge connection function when using VPN Server and VPN Bridge, see 3.6.7 Tagged VLAN Frames.

    ...

    The MAC address of virtual network adapter on VPN Client can be changed. The way of changing, see "Changing Advanced Setting" of 4.3.2 Virtual Network Adapter Creation and Setup. you can also change the setting with NicSetSetting of vpncmd command.

    ...

    The virtual network adapter of VPN Client reports a communication speed as 100Mbps to windows. This value can be changed at will. In detail, see "Changing Advanced Setting" of 4.3.2 Virtual Network Adapter Creation and Setup.

    ...

    When connecting to VPN Server with VPN Client, you can enter a password with password authentication not to save one. In detail, see "Information Required for Standard Password Authentication and RADIUS or NT Domain Authentication" of 4.4.7 User Authentication Setting.

    ...