Which VPN Protocol is more secure?

Started by mrdavekim, September 15, 2020, 04:20:48 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
September 15, 2020, 04:20:48 PM
I newly get an account of vpn and I do not have enough knowledge about their protocols. I get their service for office use to access corporate website and documents. When I click on the app settings, a list of protocols are available such as pptp, ikev2, l2tp and openvpn. For getting information, I read about their properties, pros and cons. After reading number of articles I get to know that two basic protocols for security like ipsec and ssl. However I have little bit confuse that which is the best option for data security. Sorry for my bad english but I hope  you understand my concern. Thank you in advance.
September 15, 2020, 05:53:27 PM #1
IPsec and TLS are very similar in regard of the encryption. The major difference is that IPsec is implemented in the network stack of the operating system while OpenVPN is implemented as an Application protocol.

The advantage of IPsec is that it is implemented in almost any major OS so you may not need a separate client. With OpenVPN you have the advantage that it is TCP/UDP based so firewalls and NAT devices can handle it better.

Since OpenVPN is more beginner friendly, I guess you should take that one.
September 15, 2020, 08:50:02 PM #2
IPsec, OpenVPN and Wireguard should deliver a good amount of security.

Be adviced that IPsec and OpenVPN can use different types of encryption. If you stay with recent encryption like AES, AES-GCM and good HASH algorythm like SHA256, SHA512 you should be good for now.
The flexibility to change the encryption is good and bad. It makes both protocols very flexible but more complex to configure.

Stay away from PPTP. It is broken.

Stay away from L2TP it is not broken to my knowledge, but there are better alternatives.
Twitter: banym
Mastodon: banym@bsd.network
Blog: https://www.banym.de
September 16, 2020, 12:43:46 PM #3
Quote from: fabian on September 15, 2020, 05:53:27 PM
IPsec and TLS are very similar in regard of the encryption. The major difference is that IPsec is implemented in the network stack of the operating system while OpenVPN is implemented as an Application protocol.

The advantage of IPsec is that it is implemented in almost any major OS so you may not need a separate client. With OpenVPN you have the advantage that it is TCP/UDP based so firewalls and NAT devices can handle it better.

Since OpenVPN is more beginner friendly, I guess you should take that one.

Thank you to suggest but in the meantime I Googled and read many other blogs such as:
https://modemfriendly.com/openvpn-vs-ipsec/
https://www.purevpn.com/what-is-vpn/protocols/ipsec
https://www.firewallhardware.it/en/pfsense-and-vpn-differences-and-insights-on-ipsec-and-openvpn-security/

All above blogs and your theory are similar. So finally OpenVPN is the best option as compare to all other.
Print
Go Up Pages1
User actions