<html xmlns="http://www.w3.org/1999/xhtml" xmlns:html="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <title> VPN – OpenSC </title><style type="text/css"> @import url(trac.css); </style></head><body><div id="content" class="wiki"> <div class="wikipage searchable"> <h1 id="VirtualPrivateNetworks">Virtual Private Networks</h1> <p> The common standard for Virtual Private Networks is IPSEC. For linux there are four implementations of IPSEC: </p> <ul><li><a class="ext-link" href="http://www.freeswan.org/" shape="rect"><span class="icon"> </span>FreeS/WAN</a> has no support for smart cards, unless patched with the X.509 patch. That patch comes with documentation how to use smart cards. FreeS/WAN project has ended, you might want to use Openswan or strongSwan instead. </li><li><a class="ext-link" href="http://www.openswan.org/" shape="rect"><span class="icon"> </span>Openswan</a> supports OpenSC natively and must be compiled with OpenSC support. If that is done, you can find more details in the Openswan documentation: <a class="ext-link" href="http://www.openswan.org/docs/local/README.x509" shape="rect"><span class="icon"> </span>README.x509</a> has a chapter 8 about Smartcard support. </li><li><a class="ext-link" href="http://www.strongswan.org/" shape="rect"><span class="icon"> </span>strongSwan</a> supports smart card authentication using PKCS#11 API. It should work fine with <tt>opensc-pkcs11.so</tt>, please report your results. Detailed documentation is part of the <a class="ext-link" href="http://www.strongswan.org/docs/install.htm#chapter_2.3" shape="rect"><span class="icon"> </span>strongSwan documentation</a>. </li><li><a class="ext-link" href="http://ipsec-tools.sourceforge.net/" shape="rect"><span class="icon"> </span>Racoon</a> does currently not support smart card authentication. </li><li><a class="ext-link" href="http://www.openvpn.net/" shape="rect"><span class="icon"> </span>OpenVPN</a> does support PKCS#11 in current devel version. Successfuly tested OpenSC with OpenVPN 2.1beta.7. They have a howto with details on it at <a class="ext-link" href="http://openvpn.net/howto.html" shape="rect"><span class="icon"> </span>http://openvpn.net/howto.html</a> </li></ul> </div> </div><div class="footer"><hr></hr><p><a href="index.html">Back to Index</a></p></div></body></html>