Program to connect to multiple VPN's at once

Hi everyone,

I am looking for suggestions on a program that will allow users to connect to multiple VPN's at one time.  The users will all be using Windows operating systems, primarily Windows 7.  I would prefer the program to be as cost effective as possible.

Thanks!
SupermanTBAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Rob WilliamsCommented:
The best bet is to use VPN routers which will establish multiple permanent routes to multiple sites and be seamless for all users.

Though running multiple simultaneous software VPN connections is not recommended, if using the Windows VPN client you can use a batch file and RASdial to establish 1 or more connections with the click of an icon.
The following link explains how to use RASdial for 1 VPN connection, but you can add multiple lines to the batch file for more connections.
http://blog.lan-tech.ca/2013/06/08/rasdial-automate-vpn-connections/

You might also want to use CMAK to automate deployment/creation of the VPN connections:
http://blog.lan-tech.ca/tag/cmak/
btanExec ConsultantCommented:
Doubt an application can do that (tough coding or handling the TCP stack mulit-threaded events) unless it is virtualised router residing in the PC and holding fort on the various VPN tunnels. but before seeing the option if a split tunnel policy is enforced, that need to be isolated for that specific VPN only so this "appl" or virtual router OS must be able to manage and achieve that w/o impact - not sure how it can be done gracefully with the PC OS TCP stack .... hence may even want to consider running virtual machine with those router appl per se (such as VMware route and dedicating each VM guest for a VPN connection) ...

Regardless, below are those that convert PCs into VPN Routers
>Zeroshell: Runs from a bootable live CD or you can permanently install, provides free L2TP/IPsec and OpenVPN. Two or more VPNs is supported in load balancing or fault tolerance configuration
 http://www.zeroshell.org/vpndetails/
>RouterOS: Installs on your PC via a bootable CD, offering PPTP, L2TP/IPsec, and OpenVPN free for a single tunnel, but may be able to purchase a subscription for more tunnels.  http://www.mikrotik.com/software.html

But think it may instead be load balancing VPN links e.g.
...used with Linux based systems is ECMP (Equal Cost Multiple Path).  By adding a default gateway to ALL the multiple lines, all with an equal cost, the connections will be evenly distributed across the multiple lines.
...a new method called PCC (Per Connection Classifier) to get around this problem that allows us to mangle packets and arrange them to use different routing tables, one per line.  In this way we can have say three lines, with three default routes, but the PCC mangle rules we will create will force each of the connections into using the different routing tables.  No connections get torn down.
https://blog.linitx.com/load-balancing-multiple-internet-connections/ and for RouterOS LB http://wiki.mikrotik.com/wiki/Load_Balancing


Pardon me if I miss the picture...
SupermanTBAuthor Commented:
I'm really looking for an application that can handle this nice & easy.  I have about 25 remote users, all working out of their homes that could possibly need to access multiple VPNs at the same time.  I know it's an odd setup, but that's the task at hand.
Determine the Perfect Price for Your IT Services

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden with our free interactive tool and use it to determine the right price for your IT services. Download your free eBook now!

btanExec ConsultantCommented:
pushing the limit, I am thinking of Liquid VPN subscription . I did not test them though but each VPN has to be have their unique profiles.
https://www.liquidvpn.com/supported-vpn-tunnel/dynamic-ip-vpn-connections/
https://www.liquidvpn.com/supported-vpn-tunnel/shared-ip-vpn-tunnels/
....or VPN Unlimited app ...https://www.vpnunlimitedapp.com/benefits
Rob WilliamsCommented:
If you are willing to pay for a 3rd part service, LogMeIn's Hamachi can do this:
https://secure.logmein.com/products/hamachi/
SupermanTBAuthor Commented:
Thanks for the recommendation guys.  I'm familiar with LMI Hamachi, but have never used it for this particular purpose.  Do you have experience in setting it up with VPNs to multiple different locations?
btanExec ConsultantCommented:
Wondering if this WAN setup for Hamachi is useful, it is in fact "meshing" multiple p2p locations if connection to various n/w id ... but both end has to have the hamachi s/w for cleitn/server comms http://support.saloniris.com/customer/portal/articles/1776495-multi-location-wide-area-network-setup
Rob WilliamsCommented:
I have set Hamachi up on occasion for clients.  Currently I have access to PC's on 3 sites in 2 countries with one configuration.  Yes, the software has to be installed on all connecting computers.

Please keep in mind VPN's have one serious security flaw.  They are a secure tunnel, but all traffic is allowed to flow through that tunnel.  For example  if 1 PC were to get the Crypto virus or any virus that propagates over a network, it could conceivably infect both local and remote computers.  Another scenario is wireless at one site gets hacked granting the user access to a local PC, and can then through that PC access the remote network.  Basically you are connecting computers over which you may not have control or monitoring capabilities.  This is why when connecting sites over a VPN it is best to use hardware routers and all devices are part of the same domain and/or forest so that you have some authentication control and monitoring capabilities.

Today there are many other more secure methods of sharing data and services; Remote Desktop Services (terminal server), SharePoint, Office 365 with SharePoint or OneDrive for Business, Direct Access, etc.
SupermanTBAuthor Commented:
Thanks Rob.  I don't think Hamachi is the solution for me as the Hamachi software has to be installed on both ends.  Do I have that right?

If so, I do not have control over both ends of these VPNs.  My client has various customers they need to connect to that provide VPN access.  I will not have control over their computers to install Hamachi.
Qlemo"Batchelor", Developer and EE Topic AdvisorCommented:
No, there is no such software providing multi-purpose, multi-tier, multi-protocol VPNs. If you restrict to IPSec VPN, or PPTP and/or L2TP/IPSec, or SSL-only, or ..., then it might be possible. But without details we can't give sound advice.

We use a broad range of VPN clients to connect to customers, but that is only feasible from office. Home Office needs to use a RDP session to the office, and then perform all 200 connects necessary. Connects are scripted depending on the client/VPN connection as a CMD or PS batch, if possible.

Also consider conflicting remote networks. If you use a client VPN, you always get an IP. That IP might be the same for different targets, or the network might be the same, and then your issues start.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
SupermanTBAuthor Commented:
Rewarding points for effort.  Doesn't look like this software exists.  Thanks!
Rob WilliamsCommented:
Regardless of the VPN solution you need some degree of control of the remote site, whether it be to enable VPN services on the server, add software to client machines, or configure a VPN router.

Thanks SupermanTB.  Good luck with the project.
btanExec ConsultantCommented:
you need minimal 802.1x or NAC type of check to ensure "clean" machine prior to connecting VPN and yes split tunnel will restrict all traffic via a tunnel, multiple tunnel is not supported as mentioned earlier once such policy enforced. thanks...
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
VPN

From novice to tech pro — start learning today.