Is using the sonic.net Cisco VPN AND the DNSSEC servers redundant? Should I use both when I use VPN? Does VPN render DNSSEC meaningless? I'm at home right now, but do travel, sometimes to open/public hotspots. I understand you have a diff IP with the VPN, that's fine for IP tracking privacy, but aren't logs still kept for 2 weeks by sonic that can be traced back to a user (via username at least referenced with the assigned IP from the VPN)? DNSSEC I guess covers a different range of security concerns/types of attacks I'm sure, but I don't really understand the details of the overlap/interaction here with VPN. I work with HW/SW but I am NOT a networking expert.
Additionally, I was having trouble setting up the VPN service, but got it to work:
Platform: Mac OS 10.7.4 using Built-In VPN service (not cisco, therefore, not using Certificate).
I finally got this to work after: 0. Deleting my old VPN service that was created on 10.6.8 Snow Leopard prior to upgrade (that never worked, nobody said it would on that OS, in fact recommended to use Cisco VPN Client d/l).
1. Fields filled in according to the wiki PLUS
2. (username means sans "@sonic.net", which is implicit, but don't waste your time trying the other way, it fails)
3. I did fill in DNS/DNSSEC servers at first, but don't need to now apparently, it grabs the standard ones.
4. *Note, do not turn off/disable your primary connection service (Ethernet/Wifi).
5. Apple has a support document on enabling options in Lion that do not exist (perhaps just not on Cisco IPSec type of VPN?) (at least not on MY 10.7.4 install, early 2011 MBP 13").
Also, here are my speed results using the below combinations (haven't switched to static):
Fusion Speeds (using dynamic IP):
VPN + DNSSEC (39ms)
4.08/.79
VPN + regular DNS (38ms)
4.04/.78
regular dynamic IP + regular DNS (26ms)
4.35/.85
regular dynamic IP+ DNSSEC (26ms)
4.36/.86
So it appears there is an ~7.5% speed loss for using the VPN, for me at least (retesting at any settings right now results in ~0-3ms + ~10kbps variations, connecting to the SAME server of course on speedtest.net). Do customers with much higher speeds see an equivalent ratio of loss, or is it more or less a static amount (everyone gets a ~300kbps speed hit, probably less likely)?
Additionally, I was having trouble setting up the VPN service, but got it to work:
Platform: Mac OS 10.7.4 using Built-In VPN service (not cisco, therefore, not using Certificate).
I finally got this to work after: 0. Deleting my old VPN service that was created on 10.6.8 Snow Leopard prior to upgrade (that never worked, nobody said it would on that OS, in fact recommended to use Cisco VPN Client d/l).
1. Fields filled in according to the wiki PLUS
2. (username means sans "@sonic.net", which is implicit, but don't waste your time trying the other way, it fails)
3. I did fill in DNS/DNSSEC servers at first, but don't need to now apparently, it grabs the standard ones.
4. *Note, do not turn off/disable your primary connection service (Ethernet/Wifi).
5. Apple has a support document on enabling options in Lion that do not exist (perhaps just not on Cisco IPSec type of VPN?) (at least not on MY 10.7.4 install, early 2011 MBP 13").
Also, here are my speed results using the below combinations (haven't switched to static):
Fusion Speeds (using dynamic IP):
VPN + DNSSEC (39ms)
4.08/.79
VPN + regular DNS (38ms)
4.04/.78
regular dynamic IP + regular DNS (26ms)
4.35/.85
regular dynamic IP+ DNSSEC (26ms)
4.36/.86
So it appears there is an ~7.5% speed loss for using the VPN, for me at least (retesting at any settings right now results in ~0-3ms + ~10kbps variations, connecting to the SAME server of course on speedtest.net). Do customers with much higher speeds see an equivalent ratio of loss, or is it more or less a static amount (everyone gets a ~300kbps speed hit, probably less likely)?