[Openswan Users] AW: Openswan client with virtual IP - howto?
mcr at sandelman.ottawa.on.ca
Thu Apr 1 10:17:53 CEST 2004
>>>>> "Jacco" == Jacco de Leeuw <jacco2 at dds.nl> writes:
Jacco> Andreas Kemper wrote:
>> Assuming now the roadwarrior to run linux instead of windows, it
>> also uses openswan. How could I configure a single machine to use
>> a sender IP-address, different from its externally visible
>> IP-address assigned by DHCP-over-IPsec? I don't wanna use any
>> specific "windows-extensions", like L2TP-IPsec.
Jacco> L2TP is not Windows specific. L2TP over IPsec is IETF
Jacco> ratified, DHCP over IPsec is not (yet?).
dhcp-over-ipsec is the product of the IPSRA WG.
IKEv2 mandates ModeCfg, however.
dhcp-over-ipsec has very poor scaling properties.
L2TP is just a way for windows to avoid deprecating RAS.
] ON HUMILITY: to err is human. To moo, bovine. | firewalls [
] Michael Richardson, Xelerance Corporation, Ottawa, ON |net architect[
] mcr at xelerance.com http://www.sandelman.ottawa.on.ca/mcr/ |device driver[
] panic("Just another Debian GNU/Linux using, kernel hacking, security guy"); [
More information about the Users