12.1 PacketiX VPN Server 2.0 Specs
This section contains specifications for the PacketiX VPN Server 2.0
software.
12.1.1 Supported Operating Systems (Recommended)
The operating systems and/or architectures recommended by SoftEther
to run PacketiX VPN Server 2.0 are listed below. If you purchased a
product license that includes technical support, only problems
encountered when running PacketiX VPN Server 2.0 on these operating
systems and/or architectures will qualify for support.
| Type |
List of Supported
Operating Systems |
List of Supported
Architectures |
Windows
*1 *3 |
Windows 2000 Professional
Windows 2000 Server
Windows 2000 Advanced Server
Windows XP Professional
Windows XP Professional x64 Edition
Windows XP Home Edition ※2
Windows XP Tablet PC Edition
Windows XP Tablet PC Edition 2005
Windows XP Media Center Edition 2004
Windows XP Media Center Edition 2005
Windows Server 2003 Standard Edition
Windows Server 2003 Standard x64 Edition
Windows Server 2003 Enterprise Edition
Windows Server 2003 Enterprise x64 Edition
Windows Server 2003 R2 Standard Edition
Windows Server 2003 R2 Standard x64 Edition
Windows Server 2003 R2 Enterprise Edition
Windows Server 2003 R2 Enterprise x64 Edition
Windows Vista Home Basic
Windows Vista Home Premium
Windows Vista Business
Windows Vista Enterprise
Windows Vista Ultimate |
x86
x64
(EM64T / AMD64) |
Linux
*4 *5 |
Red Hat Enterprise Linux
AS 4 *6
Red Hat Enterprise Linux ES 4 *6
Turbolinux 10 Server *7
Fedora Core 4 *8
Fedora Core 5 *8
CentOS 4 *8 |
x86
x64
(EM64T / AMD64) |
|
*1 |
Requires
the latest Service Pack and Internet Explorer. |
|
*2 |
Windows XP
Home Edition is officially supported from Build 5280. |
|
*3 |
Not supported if any third party firewall, anti-virus, or VPN
software is being used. |
|
*4 |
Not supported if any firewall, anti-virus, or VPN software,
including that which is included with the OS, is being used.
Also not supported if the system has been vastly modified from
that of a clean install of the distribution. |
|
*5 |
We recommended selecting all packages when installing the
distribution. We only support systems with the development
libraries zlib, OpenSSL, readline, and ncurses and development
tools such as gcc and binutils installed. |
|
*6 |
Only
supported if the kernel has been updated to version 2.6.9-22 or
higher from the Red Hat Network. |
|
*7 |
Only supported if the kernel has been updated to version 2.6.8-5
or higher via the update service. |
|
*8 |
If you have
purchased a product license for PacketiX VPN Server we do not
support its use on Fedora Core or CentOS. We will provide
support as if it was being used on Red Hat Enterprise Linux
AS/ES. |
12.1.2 Supported Operating Systems (All)
In addition to the recommended operating systems above, PacketiX VPN
Server 2.0 may also possibly be run on the operating systems and/or
architectures listed below. Using PacketiX VPN Server 2.0 on operating
systems and/or architectures not listed in the list of recommendations
above requires expert knowledge of computer networking and VPNs.
Furthermore, you may experience some limitations if you attempt to use
PacketiX VPN Server 2.0 on these systems.
| Type |
List of Supported
Operating Systems |
List of Supported
Architectures |
| Windows |
Windows 98
Windows 98 Second Edition
Windows Millennium Edition
Windows NT 4.0 Workstation
Windows NT 4.0 Server
Windows NT 4.0 Server, Enterprise Edition
Windows 2000 Professional
Windows 2000 Server
Windows 2000 Advanced Server
Windows XP Professional
Windows XP Professional x64 Edition
Windows XP Home Edition
Windows XP Tablet PC Edition
Windows XP Tablet PC Edition 2005
Windows XP Media Center Edition 2004
Windows XP Media Center Edition 2005
Windows Server 2003 Standard Edition
Windows Server 2003 Standard x64 Edition
Windows Server 2003 Enterprise Edition
Windows Server 2003 Enterprise x64 Edition
Windows Server 2003 R2 Standard Edition
Windows Server 2003 R2 Standard x64 Edition
Windows Server 2003 R2 Enterprise Edition
Windows Server 2003 R2 Enterprise x64 Edition
Windows Vista Home Basic
Windows Vista Home Premium
Windows Vista Business
Windows Vista Enterprise
Windows Vista Ultimate |
x86
x64
(EM64T / AMD64) |
| Linux |
Systems containing version
2.4 or higher of the Linux kernel with the development libraries
zlib, OpenSSL, readline, and ncurses and development tools such
as gcc installed. The kernel must support Packet Socket in order
to use local bridging. The universal TUN/TAP device driver must
be installed on the system to use the tap functionality. |
x86
x64
(EM64T / AMD64)
PowerPC
SH4 32 bit
MIPS 32 bit |
| FreeBSD |
FreeBSD 5.x or higher with
the development libraries zlib, OpenSSL, readline, and ncurses
and development tools such as gcc installed. |
x86
x64
(EM64T / AMD64) |
| Solaris |
Solaris 8 or higher with
the development libraries zlib, OpenSSL, readline, and ncurses
and development tools such as gcc installed. |
x86
x64
(EM64T / AMD64)
SPARC 32 bit
SPARC 64 bit |
| Mac OS X |
Darwin 7.9.0 or higher
with the development libraries zlib, OpenSSL, readline, and
ncurses and development tools such as gcc installed. |
PowerPC |
12.1.3 Hardware Requirements
The following hardware is required in order to install and run
PacketiX VPN Server 2.0 properly. We have listed both the minimum and
recommended hardware requirements. If you purchased a product license
that includes technical support, only problems encountered when running
PacketiX VPN Server 2.0 on a system that meets the recommended hardware
requirements will be supported. Systems that fall below these
recommended requirements are not supported.
For standard editions of PacketiX VPN Server 2.0
| Hardware |
Details |
| Monitor |
Monitors capable of displaying a window resolution of 800 x
600 with 16 bit color or higher (for Windows) |
| RAM (Minimum) |
At least 32 MB
+ (0.5 MB * maximum simultaneous
connections)
of available RAM is required. |
| RAM (Recommended) |
At least 128 MB
+ (0.5 MB * maximum simultaneous
connections)
of available RAM. |
| Hard Disk Space
(Minimum) |
At least 100 MB of available hard disk space is required. |
| Hard Disk Space
(Recommended) |
At least 20 GB of available hard disk space should be
allocated for the software and log files. |
For PacketiX VPN Server 2.0 Carrier Edition
| Hardware |
Details |
| Monitor |
Monitors capable of displaying a window resolution of 800 x
600 with 16 bit color or higher (for Windows) |
RAM (Recommended)
(For a stand-alone server or cluster controller) |
At least (128 MB + 0.5 MB * (total number of VPN sessions
across the cluster / number of VPN servers in the cluster) +
1.0 MB * number of Virtual HUBs in use across the cluster)
of available RAM. |
RAM (Recommended)
(For cluster member servers) |
At least (128 MB + 0.5 MB * (total number of VPN sessions
across the cluster / number of VPN servers in the cluster) +
1.0 MB * number of Virtual HUBs in use across the cluster)
of available RAM. |
Hard Disk Space
(Recommended)
(For a stand-alone server or cluster
controller) |
At least 200 GB of available hard disk space should be
allocated for the software and log files. We recommend using
RAID for redundancy. The actual amount of space required
depends heavily on the type of online services you use with
Carrier Edition, how often you use them, and your own log
file settings. |
Hard Disk Space
(Recommended)
(For a stand-alone server or cluster
controller) |
At least 80 GB of available hard disk space should be
allocated for the software and log files. The actual amount
of space required depends heavily on the type of online
services you use with Carrier Edition, how often you use
them, and your own log file settings. |
The software may still operate on systems that do not meet the above
requirements, but may rely on swap file usage which can drastically
reduce overall performance. If swap space can not be allocated PacketiX
VPN Server 2.0 will stop functioning.
Depending on how you configure it, PacketiX VPN Server 2.0 may save
enormous log files. Low amounts of free disk space leads to
fragmentation and other problems, which can cause drastic drops in
performance. Furthermore, log files may not be able to be written to the
disk if there is not enough available space.
12.1.4 Software Specs
About the VPN Server Software
PacketiX VPN Server 2.0 has all the features, and limitations, that
are written in this manual. The following items are particularly
important to look over.
- The minimum and recommended system requirements shown here are
merely an estimate, and no guarantee is made that the software will
always operate under that environment.
-
Remember that there are certain logical and physical limitations in
computing, and those limitations can not be broken even if your
system meets the above requirements. For example, for most systems
the user space for each process is 2 or 3 GB. If more than this
amount is required, the software will not function properly.
Furthermore, the system capacity required can change depending on
how you use the software and the amount of traffic on your network.
- The chart above does not list a recommended CPU speed. The
amount of CPU speed required depends on the throughput you need and
the environment you will actually perform VPN communication in. Of
course, for the best performance we recommend using the fastest CPU
possible.
- Some limitations may be encountered with PacketiX VPN 2.0 due to
the library/system calls it uses and/or other software/hardware on
your system.
- In some cases, you may encounter problems with special
networking devices on the existing network between the VPN server
and the VPN client (VPN Client or VPN Bridge) when using PacketiX
VPN 2.0. If you are dealing with network devices that perform some
special operation other than basic networking tasks such as IP
routing or NAT, you may need to configure those devices or replace
them entirely to get them to work with PacketiX VPN 2.0.
VPN Server Functionality
PacketiX VPN Server 2.0 can handle many objects (data items). The
maximum numbers for each of these are listed below.
|
VPN Server Basic Specs |
Maximum number of
simultaneous VPN sessions
(Standard Editions) |
4,096 sessions
(does not include local bridge sessions, SecureNAT sessions,
Virtual Layer 3 Switch sessions, server-side cascade connection
sessions, etc.)
Clustering theoretically allows for a maximum of (4,096 * total
number of servers) simultaneous connections. |
Maximum number of
simultaneous VPN sessions
(Carrier Edition) |
100,000 sessions
(does not include local bridge sessions, SecureNAT sessions,
Virtual Layer 3 Switch sessions, server-side cascade connection
sessions, etc.)
Clustering theoretically allows for a maximum of (100,000 *
total number of servers) simultaneous connections. |
Maximum number of Virtual
HUBs that can be created
(Standard Editions) |
4,096
When using clustering, only 4,096 Virtual HUBs may be defined
across the entire cluster. |
Maximum number of Virtual
HUBs that can be created
(Carrier Edition) |
100,000
When using clustering, only 100,000 Virtual HUBs may be defined
across the entire cluster. |
|
VPN Operation Mode |
| Layer 2 (Ethernet frame
switching) Mode |
Yes |
| Layer 3 (IP packet
routing) Mode |
Yes |
|
Traffic Management |
| VoIP / QoS Support |
Yes (with Option Pack) |
| Bandwidth limitations for
each VPN user |
Yes |
|
Virtual HUB Specs |
| Number of registered users |
10,000 users |
| Number of registered
groups |
10,000 groups |
| Number of access list
entries |
4,096 entries |
| Number of MAC address
table entries |
65,536 entries |
| Number of IP address table
entries |
65,536 entries |
| Number of dependable
certificate authorities (CA) |
4,096 |
| Number of disabled
certificates |
4,096 entries |
| Number of registered
cascade connections |
128 |
|
Virtual HUBs' SecureNAT Capability Specs |
| Virtual NAT Functionality |
Yes |
| Number of Virtual NAT
mapping table entries |
4,096 entries |
| Virtual DHCP Server
Functionality |
Yes |
| Safe NAT operation in user
mode |
Yes |
|
Virtual Layer 3 Switch Specs |
| Number of Virtual
Interfaces |
4,096 |
| Number of routing table
entries |
4,096 entries |
|
Highly Available (HA) System/Clustering Specs |
| Number of VPN servers
available to join the cluster |
Maximum of approximately
64 |
| Load Balancing |
Yes |
| Load given to each node
via load balancing |
Yes |
| Dynamic mode Virtual HUB
support |
Yes |
| Static mode Virtual HUB
support |
Yes |
| Automatic recovery from
fatal errors |
Yes |
|
Security Specs |
| External User
Authentication |
RADIUS / NT Domain
certification / Active Directory certification |
| Advanced security policies
for all users |
Yes |
| Separate security logs for
all Virtual HUBs |
Yes |
| Full packet logs of all
VPN traffic |
Yes |
| Separate logs for each
packet type |
TCP / UDP / ICMP / ARP /
IP / Ethernet
|
| Operation under system
privileges |
Yes |
| Operation under user
privileges |
Yes |
| DoS attack (SYN flood)
detection and protection |
Yes |
|
Manageability Specs |
| Management via Windows
based server management software |
Yes |
| Management via CUI |
Yes |
| Send logs with syslog |
Yes |
| Automatic configuration of
the VPN listener port |
Yes |
12.1.5 Program File Structure
Program File Structure - Windows Version
The absolute minimum required executable and data files required to
run PacketiX VPN Server 2.0 in Windows are listed below.
| File name |
Details |
| vpnserver.exe |
PacketiX VPN Server 2.0's
executable file.
For the x64 version, the filename is vpnserver_x64.exe. |
| vpnsmgr.exe |
PacketiX VPN Server
Manager 2.0's executable file.
For the x64 version, the filename is vpnsmgr_x64.exe. |
| vpncmd.exe |
PacketiX VPN Command Line
Management Utility 2.0's executable file.
For the x64 version, the filename is vpncmd_x64.exe. |
| hamcore.se2 |
Shared data files used by
all PacketiX VPN 2.0 programs. |
Program File Structure - UNIX Version (Including Linux)
The absolute minimum required executable and data files required to
run PacketiX VPN Server 2.0 on UNIX (including Linux) are listed below
| File name |
Details
|
| vpnserver |
PacketiX VPN
Server 2.0's executable file. |
| vpnserver |
PacketiX VPN
Command Line Management Utility 2.0's executable file. |
| hamcore.se2 |
Shared data files
used by all PacketiX VPN 2.0 programs. |
|