SlideShare a Scribd company logo

Comparison: VNS3 and Openswan

Cohesive Networks
Cohesive Networks

Learn more about Cohesive Networks' virtual networking device with our handy comparison guide. See how VNS3 outshines the rest with enhanced capabilities, functionality and interoperability for any public, private or hybrid cloud.

1 of 2
Download to read offline
A virtual networking platform to protect apps in any environment Cohesive Networks’ VNS3 is a cloud-class network security and connectivity platform built for public, private and hybrid cloud environments. Over 1,200 customers in 20+ countries trust VNS3 to enhance network security on top of other cloud networks. VNS3 Data Sheet | Customer Solutions © 2016 Cohesive Networks Comparison: VNS3 and Openswan Your applications secured VNS3 Openswan Core Functionality Router yes yes Firewall yes OS port filtering VPN Concentrator (IPsec & SSL) yes yes Switch yes no Protocol Redistributor yes no Custom Network Services yes no Pricing based on network complexity open source Data Encryption (In Motion) yes no Overlay Network yes no Scalability/Elasticity change the instance size and/or add more VNS3 controller instances to the network mesh single software package High Availability IPsec eBGP, peer list, standby controller eBGP SSL/TLS multiple VNS3 controller mesh failover none Overlay Network multiple VNS3 controller mesh failover none Built for cloud Launched in 2008 VNS3 was built for the cloud, defined the cloud networking/NFV market and continues to innovate with Docker integration and virtual network management and monitoring. VNS3 allows users to connect, integrate and secure their cloud-based applications. Openswan was first released in 2003 by Xelerance and some of the original FreeS/WAN volunteers to cater the open source IPsec project more to enterprise. (source: Building And Integrating Virtual Private Networks With Openswan by Wouters and Bantoft). Today, Openswan remains a free IPsec implementation for Linux, and supports most of the extensions (RFC + IETF drafts) related to IPsec, including IKEv2, X.509 Digital Certificates, NAT Traversal, and many others (source: https://www.openswan.org/).
Lower price
 VNS3 Pricing also subscription-based but is standard across all clouds, and different editions are offered in order to offer customers a choice based on their use-case. VNS3 pricing ranges from Free to $750/month, excluding server runtime fees Openswan is a free, open source project. There is no support 
 Data Security Compliance
 VNS3 allows you to encrypt all your data in monitions, even that within the cloud, and you control the encryption keys. Customers build PCI and HIPPA compliant (cloud based) solutions with VNS3 Openswan does not encrypt your data in motion in the cloud Control over IP Addressing, Network Topologies, and Multicast
 VNS3 provides Overlay Network functionality which was specifically developed for 3rd party owned and operated deployment environments. The Overlay Network allows users to control addressing, topology, protocols, and security in the public cloud Openswan has no concept of an Overlay Network and no ability to handle address overlap or public IP encrypted domain requirements Scalable, High Availability, Hybrid-Cloud, Multi-Cloud, Multi-Geo
 VNS3 Controller instances are configurable in a mesh. VNS3 can run as a cluster to provide additional features and increased performance in single cloud regions, across regions and even across cloud providers Openswan virtual machines are standalone devices Extend and customize your network functions 
 VNS3 allows customers to add Layer 4-7 network services via its Docker LXC Container system. Users can add load balancing, proxy, reverse proxy, content caching, IDS, and other functionality directly to their VNS3 devices Openswan is a software package that can be loaded on an instance with other network services but customer/user customization has no enterprise support or standardized mechanism for integration VNS3 Use cases (unachievable with Openswan alone) 1. Data Security Compliance - end to end encryption for PCI and HIPPA solutions 2. HA - True Cloud Network Failover 3. Cloud WAN- Federated Cloud (and Global Points of Presence) 4. Multicast for service election and service discovery 5. Add Load balancing/IDS/Proxy/etc to you network appliance Comparison: Openswan Copyright Cohesive Networks Chicago | London | Palo Alto info@cohesive.net US toll-free: +1 888 444 3932 UK: +44 208 144 015 www.cohesive.net/vns3

More Related Content

Comparison: VNS3 and Openswan

  • 1. A virtual networking platform to protect apps in any environment Cohesive Networks’ VNS3 is a cloud-class network security and connectivity platform built for public, private and hybrid cloud environments. Over 1,200 customers in 20+ countries trust VNS3 to enhance network security on top of other cloud networks. VNS3 Data Sheet | Customer Solutions © 2016 Cohesive Networks Comparison: VNS3 and Openswan Your applications secured VNS3 Openswan Core Functionality Router yes yes Firewall yes OS port filtering VPN Concentrator (IPsec & SSL) yes yes Switch yes no Protocol Redistributor yes no Custom Network Services yes no Pricing based on network complexity open source Data Encryption (In Motion) yes no Overlay Network yes no Scalability/Elasticity change the instance size and/or add more VNS3 controller instances to the network mesh single software package High Availability IPsec eBGP, peer list, standby controller eBGP SSL/TLS multiple VNS3 controller mesh failover none Overlay Network multiple VNS3 controller mesh failover none Built for cloud Launched in 2008 VNS3 was built for the cloud, defined the cloud networking/NFV market and continues to innovate with Docker integration and virtual network management and monitoring. VNS3 allows users to connect, integrate and secure their cloud-based applications. Openswan was first released in 2003 by Xelerance and some of the original FreeS/WAN volunteers to cater the open source IPsec project more to enterprise. (source: Building And Integrating Virtual Private Networks With Openswan by Wouters and Bantoft). Today, Openswan remains a free IPsec implementation for Linux, and supports most of the extensions (RFC + IETF drafts) related to IPsec, including IKEv2, X.509 Digital Certificates, NAT Traversal, and many others (source: https://www.openswan.org/).
  • 2. Lower price
 VNS3 Pricing also subscription-based but is standard across all clouds, and different editions are offered in order to offer customers a choice based on their use-case. VNS3 pricing ranges from Free to $750/month, excluding server runtime fees Openswan is a free, open source project. There is no support 
 Data Security Compliance
 VNS3 allows you to encrypt all your data in monitions, even that within the cloud, and you control the encryption keys. Customers build PCI and HIPPA compliant (cloud based) solutions with VNS3 Openswan does not encrypt your data in motion in the cloud Control over IP Addressing, Network Topologies, and Multicast
 VNS3 provides Overlay Network functionality which was specifically developed for 3rd party owned and operated deployment environments. The Overlay Network allows users to control addressing, topology, protocols, and security in the public cloud Openswan has no concept of an Overlay Network and no ability to handle address overlap or public IP encrypted domain requirements Scalable, High Availability, Hybrid-Cloud, Multi-Cloud, Multi-Geo
 VNS3 Controller instances are configurable in a mesh. VNS3 can run as a cluster to provide additional features and increased performance in single cloud regions, across regions and even across cloud providers Openswan virtual machines are standalone devices Extend and customize your network functions 
 VNS3 allows customers to add Layer 4-7 network services via its Docker LXC Container system. Users can add load balancing, proxy, reverse proxy, content caching, IDS, and other functionality directly to their VNS3 devices Openswan is a software package that can be loaded on an instance with other network services but customer/user customization has no enterprise support or standardized mechanism for integration VNS3 Use cases (unachievable with Openswan alone) 1. Data Security Compliance - end to end encryption for PCI and HIPPA solutions 2. HA - True Cloud Network Failover 3. Cloud WAN- Federated Cloud (and Global Points of Presence) 4. Multicast for service election and service discovery 5. Add Load balancing/IDS/Proxy/etc to you network appliance Comparison: Openswan Copyright Cohesive Networks Chicago | London | Palo Alto info@cohesive.net US toll-free: +1 888 444 3932 UK: +44 208 144 015 www.cohesive.net/vns3